rpm package

almalinux/gimp-libs

pkg:rpm/almalinux/gimp-libs

Vulnerabilities (32)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2026-4154	Hig	7.8	< 2:3.0.4-1.el9_7.5	2:3.0.4-1.el9_7.5	Apr 11, 2026	GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2026-4153	Hig	7.8	< 2:3.0.4-1.el9_7.5	2:3.0.4-1.el9_7.5	Apr 11, 2026	GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2026-4152	Hig	7.8	< 2:3.0.4-1.el9_7.5	2:3.0.4-1.el9_7.5	Apr 11, 2026	GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2026-4151	Hig	7.8	< 2:3.0.4-1.el9_7.5	2:3.0.4-1.el9_7.5	Apr 11, 2026	GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2026-4150	Hig	7.8	< 2:3.0.4-1.el9_7.5	2:3.0.4-1.el9_7.5	Apr 11, 2026	GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2026-4887	Med	6.1	< 2:3.0.4-1.el9_7.5	2:3.0.4-1.el9_7.5	Mar 26, 2026	A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX image. Successful exploitation could lead to out-of-bounds memory disclosu
CVE-2026-2048		—	< 2:3.0.4-1.el9_7.4	2:3.0.4-1.el9_7.4	Feb 20, 2026	GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malici
CVE-2026-2047		—	< 2:3.0.4-1.el9_7.4	2:3.0.4-1.el9_7.4	Feb 20, 2026	GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit
CVE-2026-2045		—	< 2:3.0.4-1.el9_7.4	2:3.0.4-1.el9_7.4	Feb 20, 2026	GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malici
CVE-2026-2044		—	< 2:3.0.4-1.el9_7.4	2:3.0.4-1.el9_7.4	Feb 20, 2026	GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malic
CVE-2026-0797		—	< 2:3.0.4-1.el9_7.4	2:3.0.4-1.el9_7.4	Feb 20, 2026	GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-15059		—	< 2:3.0.4-1.el9_7.3	2:3.0.4-1.el9_7.3	Jan 23, 2026	GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-14425		—	< 2:3.0.4-1.el9_7.2	2:3.0.4-1.el9_7.2	Dec 23, 2025	GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-14424		—	< 2:3.0.4-1.el9_7.2	2:3.0.4-1.el9_7.2	Dec 23, 2025	GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious p
CVE-2025-14423		—	< 2:3.0.4-1.el9_7.2	2:3.0.4-1.el9_7.2	Dec 23, 2025	GIMP LBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit
CVE-2025-14422		—	< 2:3.0.4-1.el9_7.2	2:3.0.4-1.el9_7.2	Dec 23, 2025	GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2025-10934		—	< 2:3.0.4-1.el9_7.1	2:3.0.4-1.el9_7.1	Oct 29, 2025	GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-10925		—	< 2:3.0.4-1.el9_7.1	2:3.0.4-1.el9_7.1	Oct 29, 2025	GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit
CVE-2025-10924		—	< 2:3.0.4-1.el9_7.1	2:3.0.4-1.el9_7.1	Oct 29, 2025	GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2025-10923		—	< 2:3.0.4-1.el9_7.1	2:3.0.4-1.el9_7.1	Oct 29, 2025	GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a maliciou

CVE-2026-4154HigApr 11, 2026
affected < 2:3.0.4-1.el9_7.5fixed 2:3.0.4-1.el9_7.5
GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2026-4153HigApr 11, 2026
affected < 2:3.0.4-1.el9_7.5fixed 2:3.0.4-1.el9_7.5
GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2026-4152HigApr 11, 2026
affected < 2:3.0.4-1.el9_7.5fixed 2:3.0.4-1.el9_7.5
GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2026-4151HigApr 11, 2026
affected < 2:3.0.4-1.el9_7.5fixed 2:3.0.4-1.el9_7.5
GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2026-4150HigApr 11, 2026
affected < 2:3.0.4-1.el9_7.5fixed 2:3.0.4-1.el9_7.5
GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2026-4887MedMar 26, 2026
affected < 2:3.0.4-1.el9_7.5fixed 2:3.0.4-1.el9_7.5
A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX image. Successful exploitation could lead to out-of-bounds memory disclosu
CVE-2026-2048Feb 20, 2026
affected < 2:3.0.4-1.el9_7.4fixed 2:3.0.4-1.el9_7.4
GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malici
CVE-2026-2047Feb 20, 2026
affected < 2:3.0.4-1.el9_7.4fixed 2:3.0.4-1.el9_7.4
GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit
CVE-2026-2045Feb 20, 2026
affected < 2:3.0.4-1.el9_7.4fixed 2:3.0.4-1.el9_7.4
GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malici
CVE-2026-2044Feb 20, 2026
affected < 2:3.0.4-1.el9_7.4fixed 2:3.0.4-1.el9_7.4
GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malic
CVE-2026-0797Feb 20, 2026
affected < 2:3.0.4-1.el9_7.4fixed 2:3.0.4-1.el9_7.4
GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-15059Jan 23, 2026
affected < 2:3.0.4-1.el9_7.3fixed 2:3.0.4-1.el9_7.3
GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-14425Dec 23, 2025
affected < 2:3.0.4-1.el9_7.2fixed 2:3.0.4-1.el9_7.2
GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-14424Dec 23, 2025
affected < 2:3.0.4-1.el9_7.2fixed 2:3.0.4-1.el9_7.2
GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious p
CVE-2025-14423Dec 23, 2025
affected < 2:3.0.4-1.el9_7.2fixed 2:3.0.4-1.el9_7.2
GIMP LBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit
CVE-2025-14422Dec 23, 2025
affected < 2:3.0.4-1.el9_7.2fixed 2:3.0.4-1.el9_7.2
GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2025-10934Oct 29, 2025
affected < 2:3.0.4-1.el9_7.1fixed 2:3.0.4-1.el9_7.1
GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-10925Oct 29, 2025
affected < 2:3.0.4-1.el9_7.1fixed 2:3.0.4-1.el9_7.1
GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit
CVE-2025-10924Oct 29, 2025
affected < 2:3.0.4-1.el9_7.1fixed 2:3.0.4-1.el9_7.1
GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2025-10923Oct 29, 2025
affected < 2:3.0.4-1.el9_7.1fixed 2:3.0.4-1.el9_7.1
GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a maliciou

Page 1 of 2