107 matches found
EUVD-2017-12028
Malware in sbrugna...
EUVD-2006-3400
Malware in sbrugna...
EUVD-2013-3184
Malware in sbrugna...
EUVD-2016-5959
Malware in sbrugna...
EUVD-2019-14691
Malware in sbrugna...
EUVD-2022-35281
Malicious code in bioql PyPI...
CVE-2012-10057 Lattice Semiconductor ispVM System 18.0.2 XCF File Handling Buffer Overflow
Lattice Semiconductor ispVM System v18.0.2 contains a buffer overflow vulnerability in its handling of .xcf project files. When parsing the version attribute of the ispXCF XML tag, the application fails to properly validate input length, allowing a specially crafted file to overwrite memory on th...
CVE-2019-5086
An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools, version 1.0.7. An integer overflow can occur while walking through tiles that could be exploited to corrupt memory and execute arbitrary code. In order to...
RHEL 7 : gimp (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gimp: predictable temporary file name in test-xcf.c unit test CVE-2018-12713 - GIMP 2.10.30 and 2.99.10 a...
CentOS 9 : gimp-2.99.8-3.el9
The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the gimp-2.99.8-3.el9 build changelog. - GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of...
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : GIMP vulnerabilities (USN-6521-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6521-1 advisory. It was discovered that GIMP incorrectly handled certain image files. If a user were tricked into opening a specially crafted...
SUSE CVE-2008-1096
The loadtile function in the XCF coder in coders/xcf.c in 1 ImageMagick 6.2.8-0 and 2 GraphicsMagick aka gm 1.1.7 allows user-assisted remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted .xcf file that triggers an out-of-bounds heap write, possibly...
SUSE CVE-2022-30067
GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of memory, resulting in insufficient memory or program crash...
SUSE CVE-2022-32990
An issue in gimplayerinvalidateboundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of Service DoS...
Rocky Linux 9 : gimp (RLSA-2022:7978)
The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:7978 advisory. - An issue in gimplayerinvalidateboundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a crafted XCF file, causing a Denial of...
Oracle Linux 9 : gimp (ELSA-2022-7978)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-7978 advisory. - fix CVE-2022-30067 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...
AlmaLinux 9 : gimp (ALSA-2022:7978)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:7978 advisory. - GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of memory, resulting...
Moderate: Red Hat Security Advisory: gimp security and enhancement update
An update for gimp is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
gimp: buffer overflow through a crafted XCF file
A vulnerability was found in GIMP. Via a specially crafted XCF file, GIMP can allocate a large amount of memory, potentially resulting in a denial of service...
RLSA-2022:7978 Moderate: gimp security and enhancement update
The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: buffer...