Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gimp vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2010-4543
Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a PSP_COMP_RLE (aka RLE compression) ...
Gimp Gimp 2.6.11
1 EDB exploit
668
VMScore
CVE-2011-1782
Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a PSP_COMP_RLE (aka RLE compression) ...
Gimp Gimp 2.6.11
828
VMScore
CVE-2009-1570
Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote malicious users to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.
Gimp Gimp 2.6.7
454
VMScore
CVE-2011-2896
The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in PBMPLUS, as used in the gif_read_lzw function in filter/image-gif.c in CUPS prior to 1.4.7, the LZWReadByte function in plug-ins/common/file-gif-load.c in GIMP 2.6.11 and previous ve...
Swi-prolog Swi-prolog
Apple Cups
Gimp Gimp
383
VMScore
CVE-2009-0581
Memory leak in LittleCMS (aka lcms or liblcms) prior to 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allows context-dependent malicious users to cause a denial of service (memory consumption and application crash) via a crafted image file.
Littlecms Little Cms
Mozilla Firefox 3.1
Gimp Gimp
Sun Openjdk
828
VMScore
CVE-2009-0723
Multiple integer overflows in LittleCMS (aka lcms or liblcms) prior to 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent malicious users to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of th...
Gimp Gimp
Mozilla Firefox 3.1
Sun Openjdk
Littlecms Little Cms
828
VMScore
CVE-2009-0733
Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS (aka lcms or liblcms) prior to 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent malicious users to execute arbitrary code via a crafted image file associated with a...
Gimp Gimp
Mozilla Firefox 3.1
Sun Openjdk
Littlecms Little Cms
383
VMScore
CVE-2007-3741
The (1) psp (aka .tub), (2) bmp, (3) pcx, and (4) psd plugins in gimp allow user-assisted remote malicious users to cause a denial of service (crash or memory consumption) via crafted image files, as discovered using the fusil fuzzing tool.
Gnu Gimp
605
VMScore
CVE-2007-2949
Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote malicious users to execute arbitrary code via a crafted PSD file that contains a large (1) width or (2) height value.
Gimp Gimp
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 6.10
Canonical Ubuntu Linux 7.04
605
VMScore
CVE-2021-45463
load_cache in GEGL prior to 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load. NOTE: GEGL releases prior to ...
Gegl Gegl
Gimp Gimp
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »