100 matches found
OSV-2025-906 Use-of-uninitialized-value in QImage::pixel
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=461199967 Crash type: Use-of-uninitialized-value Crash state: QImage::pixel XCFImageFormat::copyGrayAToRGB XCFImageFormat::copyLayerToImage...
EUVD-2018-15625
Malware in sbrugna...
EUVD-2019-14665
Malware in sbrugna...
EUVD-2018-15624
Malware in sbrugna...
EUVD-2017-5846
Malware in sbrugna...
EUVD-2017-5952
Malware in sbrugna...
EUVD-2025-16287
Malicious code in bioql PyPI...
OESA-2025-1620 gimp security update
The GIMP is an image composition and editing program, which can be used for creating logos and other graphics for Web pages. The GIMP offers many tools and filters, and provides a large image manipulation toolbox, including channel operations and layers, effects, subpixel imaging and antialiasing...
CVE-2025-48798
A flaw was found in GIMP when processing XCF image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing use-after-free issues...
CVE-2025-48798 Gimp: multiple use after free in xcf parser
A flaw was found in GIMP when processing XCF image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing use-after-free issues...
PT-2025-23001
Name of the Vulnerable Software and Affected Versions GIMP versions prior to the fixed version Description A flaw was found in GIMP when processing XCF image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious...
PT-2023-35999 · Git +1 · Kimageformats
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow write error. Technical details about the crash include the involvement of specific functions:...
SUSE CVE-2017-14343
ImageMagick 7.0.6-6 has a memory leak vulnerability in ReadXCFImage in coders/xcf.c via a crafted xcf image file...
SUSE CVE-2018-3839
An exploitable code execution vulnerability exists in the XCF image rendering functionality of Simple DirectMedia Layer SDL2image-2.0.2. A specially crafted XCF image can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can display a specially crafted image to...
SUSE CVE-2018-3977
An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2image-2.0.3. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability...
Mageia: Security Advisory (MGASA-2019-0364)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated SDL_image packages fix security vulnerabilities
The updated packages fix security vulnerabilities: An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2image-2.0.3. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted imag...
openSUSE Security Update : SDL2_image (openSUSE-2019-2070)
This update for SDL2image fixes the following issues : Update to new upstream release 2.0.5. Security issues fixed : - TALOS-2019-0820 CVE-2019-5051: exploitable heap-based buffer overflow vulnerability when loading a PCX file boo1140419 - TALOS-2019-0821 CVE-2019-5052: exploitable integer overfl...
Security update for SDL_image (moderate)
openSUSE Security Update: Security update for SDLimage Announcement ID: openSUSE-SU-2019:2071-1 Rating: moderate References: 1124827 1140421 1141844 1143763 1143764 1143766 1143768 Cross-References: CVE-2019-13616 CVE-2019-5052 CVE-2019-5057 CVE-2019-5058 CVE-2019-5059 CVE-2019-5060 CVE-2019-7635...
Security update for SDL2_image (moderate)
openSUSE Security Update: Security update for SDL2image Announcement ID: openSUSE-SU-2019:2070-1 Rating: moderate References: 1135787 1135789 1135796 1135806 1136101 1140419 1140421 1141844 1143763 1143764 1143766 1143768 Cross-References: CVE-2019-12217 CVE-2019-12218 CVE-2019-12220 CVE-2019-122...