rpm package

almalinux/pygobject2-devel

pkg:rpm/almalinux/pygobject2-devel

Vulnerabilities (22)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2026-4154	Hig	7.8	< 2.28.7-5.module_el8.10.0+4175+c208a0bf	2.28.7-5.module_el8.10.0+4175+c208a0bf	Apr 11, 2026	GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2026-4153	Hig	7.8	< 2.28.7-5.module_el8.10.0+4175+c208a0bf	2.28.7-5.module_el8.10.0+4175+c208a0bf	Apr 11, 2026	GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2026-4150	Hig	7.8	< 2.28.7-5.module_el8.10.0+4175+c208a0bf	2.28.7-5.module_el8.10.0+4175+c208a0bf	Apr 11, 2026	GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2026-4887	Med	6.1	< 2.28.7-5.module_el8.10.0+4175+c208a0bf	2.28.7-5.module_el8.10.0+4175+c208a0bf	Mar 26, 2026	A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX image. Successful exploitation could lead to out-of-bounds memory disclosu
CVE-2026-2048		—	< 2.28.7-5.module_el8.10.0+4137+2d0d25cf	2.28.7-5.module_el8.10.0+4137+2d0d25cf	Feb 20, 2026	GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malici
CVE-2026-2045		—	< 2.28.7-5.module_el8.10.0+4137+2d0d25cf	2.28.7-5.module_el8.10.0+4137+2d0d25cf	Feb 20, 2026	GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malici
CVE-2026-2044		—	< 2.28.7-5.module_el8.10.0+4137+2d0d25cf	2.28.7-5.module_el8.10.0+4137+2d0d25cf	Feb 20, 2026	GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malic
CVE-2026-0797		—	< 2.28.7-5.module_el8.10.0+4137+2d0d25cf	2.28.7-5.module_el8.10.0+4137+2d0d25cf	Feb 20, 2026	GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-14422		—	< 2.28.7-5.module_el8.10.0+3952+571e801c	2.28.7-5.module_el8.10.0+3952+571e801c	Dec 23, 2025	GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2025-10934		—	< 2.28.7-5.module_el8.10.0+3952+571e801c	2.28.7-5.module_el8.10.0+3952+571e801c	Oct 29, 2025	GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-10925		—	< 2.28.7-5.module_el8.10.0+3952+571e801c	2.28.7-5.module_el8.10.0+3952+571e801c	Oct 29, 2025	GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit
CVE-2025-10924		—	< 2.28.7-5.module_el8.10.0+3952+571e801c	2.28.7-5.module_el8.10.0+3952+571e801c	Oct 29, 2025	GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2025-10923		—	< 2.28.7-5.module_el8.10.0+3952+571e801c	2.28.7-5.module_el8.10.0+3952+571e801c	Oct 29, 2025	GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a maliciou
CVE-2025-10922		—	< 2.28.7-5.module_el8.10.0+3952+571e801c	2.28.7-5.module_el8.10.0+3952+571e801c	Oct 29, 2025	GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-10921		—	< 2.28.7-5.module_el8.10.0+3952+571e801c	2.28.7-5.module_el8.10.0+3952+571e801c	Oct 29, 2025	GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-10920		—	< 2.28.7-5.module_el8.10.0+3952+571e801c	2.28.7-5.module_el8.10.0+3952+571e801c	Oct 29, 2025	GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malic
CVE-2025-5473		—	< 2.28.7-5.module_el8.10.0+3952+571e801c	2.28.7-5.module_el8.10.0+3952+571e801c	Jun 6, 2025	GIMP ICO File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2025-48798	Hig	7.3	< 2.28.7-5.module_el8.10.0+3952+571e801c	2.28.7-5.module_el8.10.0+3952+571e801c	May 27, 2025	A flaw was found in GIMP when processing XCF image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing use-after-free issues.
CVE-2025-48797	Hig	7.3	< 2.28.7-5.module_el8.10.0+3952+571e801c	2.28.7-5.module_el8.10.0+3952+571e801c	May 27, 2025	A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing a heap buffer overflow.
CVE-2023-44444		—	< 2.28.7-4.module_el8.4.0+2208+3d7d61b2	2.28.7-4.module_el8.4.0+2208+3d7d61b2	May 3, 2024	GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page

CVE-2026-4154HigApr 11, 2026
affected < 2.28.7-5.module_el8.10.0+4175+c208a0bffixed 2.28.7-5.module_el8.10.0+4175+c208a0bf
GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2026-4153HigApr 11, 2026
affected < 2.28.7-5.module_el8.10.0+4175+c208a0bffixed 2.28.7-5.module_el8.10.0+4175+c208a0bf
GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2026-4150HigApr 11, 2026
affected < 2.28.7-5.module_el8.10.0+4175+c208a0bffixed 2.28.7-5.module_el8.10.0+4175+c208a0bf
GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2026-4887MedMar 26, 2026
affected < 2.28.7-5.module_el8.10.0+4175+c208a0bffixed 2.28.7-5.module_el8.10.0+4175+c208a0bf
A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX image. Successful exploitation could lead to out-of-bounds memory disclosu
CVE-2026-2048Feb 20, 2026
affected < 2.28.7-5.module_el8.10.0+4137+2d0d25cffixed 2.28.7-5.module_el8.10.0+4137+2d0d25cf
GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malici
CVE-2026-2045Feb 20, 2026
affected < 2.28.7-5.module_el8.10.0+4137+2d0d25cffixed 2.28.7-5.module_el8.10.0+4137+2d0d25cf
GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malici
CVE-2026-2044Feb 20, 2026
affected < 2.28.7-5.module_el8.10.0+4137+2d0d25cffixed 2.28.7-5.module_el8.10.0+4137+2d0d25cf
GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malic
CVE-2026-0797Feb 20, 2026
affected < 2.28.7-5.module_el8.10.0+4137+2d0d25cffixed 2.28.7-5.module_el8.10.0+4137+2d0d25cf
GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-14422Dec 23, 2025
affected < 2.28.7-5.module_el8.10.0+3952+571e801cfixed 2.28.7-5.module_el8.10.0+3952+571e801c
GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2025-10934Oct 29, 2025
affected < 2.28.7-5.module_el8.10.0+3952+571e801cfixed 2.28.7-5.module_el8.10.0+3952+571e801c
GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-10925Oct 29, 2025
affected < 2.28.7-5.module_el8.10.0+3952+571e801cfixed 2.28.7-5.module_el8.10.0+3952+571e801c
GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit
CVE-2025-10924Oct 29, 2025
affected < 2.28.7-5.module_el8.10.0+3952+571e801cfixed 2.28.7-5.module_el8.10.0+3952+571e801c
GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2025-10923Oct 29, 2025
affected < 2.28.7-5.module_el8.10.0+3952+571e801cfixed 2.28.7-5.module_el8.10.0+3952+571e801c
GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a maliciou
CVE-2025-10922Oct 29, 2025
affected < 2.28.7-5.module_el8.10.0+3952+571e801cfixed 2.28.7-5.module_el8.10.0+3952+571e801c
GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-10921Oct 29, 2025
affected < 2.28.7-5.module_el8.10.0+3952+571e801cfixed 2.28.7-5.module_el8.10.0+3952+571e801c
GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
CVE-2025-10920Oct 29, 2025
affected < 2.28.7-5.module_el8.10.0+3952+571e801cfixed 2.28.7-5.module_el8.10.0+3952+571e801c
GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malic
CVE-2025-5473Jun 6, 2025
affected < 2.28.7-5.module_el8.10.0+3952+571e801cfixed 2.28.7-5.module_el8.10.0+3952+571e801c
GIMP ICO File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
CVE-2025-48798HigMay 27, 2025
affected < 2.28.7-5.module_el8.10.0+3952+571e801cfixed 2.28.7-5.module_el8.10.0+3952+571e801c
A flaw was found in GIMP when processing XCF image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing use-after-free issues.
CVE-2025-48797HigMay 27, 2025
affected < 2.28.7-5.module_el8.10.0+3952+571e801cfixed 2.28.7-5.module_el8.10.0+3952+571e801c
A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing a heap buffer overflow.
CVE-2023-44444May 3, 2024
affected < 2.28.7-4.module_el8.4.0+2208+3d7d61b2fixed 2.28.7-4.module_el8.4.0+2208+3d7d61b2
GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page

Page 1 of 2