Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

gimp gimp 2.8.22 vulnerabilities and exploits

(subscribe to this query)
7.8
CVSSv3
CVE-2017-17784
In GIMP 2.8.22, there is a heap-based buffer over-read in load_image in plug-ins/common/file-gbr.c in the gbr import parser, related to mishandling of UTF-8 data.
Gimp Gimp 2.8.22Debian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 7.0Canonical Ubuntu Linux 14.04
7.8
CVSSv3
CVE-2017-17785
In GIMP 2.8.22, there is a heap-based buffer overflow in the fli_read_brun function in plug-ins/file-fli/fli.c.
Gimp Gimp 2.8.22Debian Debian Linux 7.0Debian Debian Linux 8.0Debian Debian Linux 9.0Canonical Ubuntu Linux 14.04
7.8
CVSSv3
CVE-2017-17786
In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c (related to bgr2rgb.part.1) via an unexpected bits-per-pixel value for an RGBA image.
Gimp Gimp 2.8.22Debian Debian Linux 9.0Debian Debian Linux 7.0Debian Debian Linux 8.0Canonical Ubuntu Linux 14.04
7.8
CVSSv3
CVE-2017-17787
In GIMP 2.8.22, there is a heap-based buffer over-read in read_creator_block in plug-ins/common/file-psp.c.
Gimp Gimp 2.8.22Debian Debian Linux 8.0Debian Debian Linux 7.0Debian Debian Linux 9.0Canonical Ubuntu Linux 14.04
5.5
CVSSv3
CVE-2017-17788
In GIMP 2.8.22, there is a stack-based buffer over-read in xcf_load_stream in app/xcf/xcf.c when there is no '\0' character after the version string.
Gimp Gimp 2.8.22Debian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 7.0Canonical Ubuntu Linux 14.04
7.8
CVSSv3
CVE-2017-17789
In GIMP 2.8.22, there is a heap-based buffer overflow in read_channel_data in plug-ins/common/file-psp.c.
Gimp Gimp 2.8.22Debian Debian Linux 9.0Debian Debian Linux 7.0Debian Debian Linux 8.0Canonical Ubuntu Linux 14.04
NA
CVE-2007-3126
Gimp prior to 2.8.22 allows context-dependent malicious users to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, a similar issue to CVE-2007-2237.
Gimp Gimp
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook