VYPR

Krita

by KDE

CVEs (1)

  • CVE-2025-59820MedNov 26, 2025
    risk 0.44cvss 6.7epss 0.00

    In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer overflow in plugins/impex/tga/kis_tga_import.cpp (aka KisTgaImport). Control flow proceeds even when a number of pixels becomes negative.