rpm package
opensuse/gimp&distro=openSUSE Leap 16.0
pkg:rpm/opensuse/gimp&distro=openSUSE%20Leap%2016.0
Vulnerabilities (15)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-4154 | Hig | 7.8 | < 3.0.8-bp160.3.1 | 3.0.8-bp160.3.1 | Apr 11, 2026 | GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious | |
| CVE-2026-4153 | Hig | 7.8 | < 3.0.8-bp160.3.1 | 3.0.8-bp160.3.1 | Apr 11, 2026 | GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a | |
| CVE-2026-4151 | Hig | 7.8 | < 3.0.8-bp160.3.1 | 3.0.8-bp160.3.1 | Apr 11, 2026 | GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious | |
| CVE-2026-4150 | Hig | 7.8 | < 3.0.8-bp160.3.1 | 3.0.8-bp160.3.1 | Apr 11, 2026 | GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious | |
| CVE-2026-2239 | Low | 2.8 | < 3.0.8-bp160.2.1 | 3.0.8-bp160.2.1 | Mar 26, 2026 | A flaw was found in GIMP. Heap-buffer-overflow vulnerability exists in the fread_pascal_string function when processing a specially crafted PSD (Photoshop Document) file. This occurs because the buffer allocated for a Pascal string is not properly null-terminated, leading to an o | |
| CVE-2025-15059 | — | < 3.0.8-bp160.1.1 | 3.0.8-bp160.1.1 | Jan 23, 2026 | GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a | ||
| CVE-2025-14425 | — | < 3.0.8-bp160.1.1 | 3.0.8-bp160.1.1 | Dec 23, 2025 | GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a | ||
| CVE-2025-14424 | — | < 3.0.8-bp160.1.1 | 3.0.8-bp160.1.1 | Dec 23, 2025 | GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious p | ||
| CVE-2025-14423 | — | < 3.0.8-bp160.1.1 | 3.0.8-bp160.1.1 | Dec 23, 2025 | GIMP LBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit | ||
| CVE-2025-14422 | — | < 3.0.8-bp160.1.1 | 3.0.8-bp160.1.1 | Dec 23, 2025 | GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious | ||
| CVE-2025-10925 | — | < 3.0.6-bp160.1.1 | 3.0.6-bp160.1.1 | Oct 29, 2025 | GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit | ||
| CVE-2025-10924 | — | < 3.0.6-bp160.1.1 | 3.0.6-bp160.1.1 | Oct 29, 2025 | GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious | ||
| CVE-2025-10922 | — | < 3.0.6-bp160.1.1 | 3.0.6-bp160.1.1 | Oct 29, 2025 | GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a | ||
| CVE-2025-10920 | — | < 3.0.6-bp160.1.1 | 3.0.6-bp160.1.1 | Oct 29, 2025 | GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malic | ||
| CVE-2025-2760 | — | < 3.0.6-bp160.1.1 | 3.0.6-bp160.1.1 | Apr 23, 2025 | GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious |
- affected < 3.0.8-bp160.3.1fixed 3.0.8-bp160.3.1
GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
- affected < 3.0.8-bp160.3.1fixed 3.0.8-bp160.3.1
GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
- affected < 3.0.8-bp160.3.1fixed 3.0.8-bp160.3.1
GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
- affected < 3.0.8-bp160.3.1fixed 3.0.8-bp160.3.1
GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
- affected < 3.0.8-bp160.2.1fixed 3.0.8-bp160.2.1
A flaw was found in GIMP. Heap-buffer-overflow vulnerability exists in the fread_pascal_string function when processing a specially crafted PSD (Photoshop Document) file. This occurs because the buffer allocated for a Pascal string is not properly null-terminated, leading to an o
- CVE-2025-15059Jan 23, 2026affected < 3.0.8-bp160.1.1fixed 3.0.8-bp160.1.1
GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
- CVE-2025-14425Dec 23, 2025affected < 3.0.8-bp160.1.1fixed 3.0.8-bp160.1.1
GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
- CVE-2025-14424Dec 23, 2025affected < 3.0.8-bp160.1.1fixed 3.0.8-bp160.1.1
GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious p
- CVE-2025-14423Dec 23, 2025affected < 3.0.8-bp160.1.1fixed 3.0.8-bp160.1.1
GIMP LBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit
- CVE-2025-14422Dec 23, 2025affected < 3.0.8-bp160.1.1fixed 3.0.8-bp160.1.1
GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
- CVE-2025-10925Oct 29, 2025affected < 3.0.6-bp160.1.1fixed 3.0.6-bp160.1.1
GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit
- CVE-2025-10924Oct 29, 2025affected < 3.0.6-bp160.1.1fixed 3.0.6-bp160.1.1
GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious
- CVE-2025-10922Oct 29, 2025affected < 3.0.6-bp160.1.1fixed 3.0.6-bp160.1.1
GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a
- CVE-2025-10920Oct 29, 2025affected < 3.0.6-bp160.1.1fixed 3.0.6-bp160.1.1
GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malic
- CVE-2025-2760Apr 23, 2025affected < 3.0.6-bp160.1.1fixed 3.0.6-bp160.1.1
GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious