Lucene search
K

4 matches found

OSV
OSV
added 2026/05/22 3:39 p.m.8 views

CLSA-2026-1778860714 gimp: Fix of 2 CVEs

CVE-2026-4153: fix heap-based buffer overflow in PSP file parser by computing proper linewidth for bit depths 1 and 4 with small widths - CVE-2026-4154: fix integer overflow and buffer overflow in XPM file parser by adding GIMPMAXIMAGESIZE bounds checks and using gtrynew...

7.8CVSS7.3AI score0.00651EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.9 views

Amazon Linux 2 : gimp, --advisory ALAS2GIMP-2026-011 (ALASGIMP-2026-011)

The version of gimp installed on the remote host is prior to 2.8.22-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2GIMP-2026-011 advisory. GIMP: PSD loader: heap-buffer-overflow in freadpascalstring no null terminator CVE-2026-2239 An integer overflow...

6.5CVSS7.2AI score0.00838EPSS
Exploits3References8
OSV
OSV
added 2026/02/24 11:16 a.m.6 views

SUSE-SU-2026:0604-1 Security update for gimp

This update for gimp fixes the following issues: - CVE-2026-2272: integer overflow in ICO file handling can lead to a heap buffer overflow bsc1258000. - CVE-2026-2271: integer overflow in the PSP file parser can lead to a heap buffer overflow bsc1257999. - CVE-2026-2239: missing null terminator...

6.5CVSS6AI score0.00838EPSS
Exploits3References7
Ubuntu
Ubuntu
added 2026/02/23 8:9 p.m.7 views

USN-8057-1: GIMP vulnerabilities

Hanno Böck discovered that GIMP allocated FLI images using only the information present in the file header, which allowed for a maliciously- crafted file to cause out-of-bounds writes. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue onl...

7.8CVSS7.2AI score0.01432EPSS
Exploits0
Rows per page
Query Builder