The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of GIMP

GIMP: file corruption via g_get_tmp_dir
A local attacker can create a symbolic link used by g_get_tmp_dir(), in order to alter the pointed file, with privileges of GIMP...
VIGILANCE-VUL-26514
GIMP: out-of-bounds memory reading via PSP
An attacker can force a read at an invalid address via PSP of GIMP, in order to trigger a denial of service, or to obtain sensitive information...
790853, CVE-2017-17787, DLA-1220-1, DSA-4077-1, FEDORA-2018-67b75f73fa, FEDORA-2018-ccef1ced42, USN-3539-1, VIGILANCE-VUL-24829
GIMP: buffer overflow via PSP
An attacker can generate a buffer overflow via PSP of GIMP, in order to trigger a denial of service, and possibly to run code...
790849, bulletinapr2018, CVE-2017-17789, DLA-1220-1, DSA-4077-1, FEDORA-2018-67b75f73fa, FEDORA-2018-ccef1ced42, USN-3539-1, VIGILANCE-VUL-24828
GIMP: out-of-bounds memory reading via GBR
An attacker can force a read at an invalid address via GBR of GIMP, in order to trigger a denial of service, or to obtain sensitive information...
790784, bulletinapr2018, CVE-2017-17784, DLA-1220-1, DSA-4077-1, FEDORA-2018-67b75f73fa, FEDORA-2018-ccef1ced42, USN-3539-1, VIGILANCE-VUL-24827
GIMP: out-of-bounds memory reading via XCF
An attacker can force a read at an invalid address via XCF of GIMP, in order to trigger a denial of service, or to obtain sensitive information...
790783, CVE-2017-17788, DLA-1220-1, DSA-4077-1, FEDORA-2018-67b75f73fa, FEDORA-2018-ccef1ced42, SUSE-SU-2020:0601-1, USN-3539-1, VIGILANCE-VUL-24826
GIMP: out-of-bounds memory reading via TGA
An attacker can force a read at an invalid address via TGA of GIMP, in order to trigger a denial of service, or to obtain sensitive information...
739134, CVE-2017-17786, DLA-1220-1, DSA-4077-1, FEDORA-2018-67b75f73fa, FEDORA-2018-ccef1ced42, SUSE-SU-2020:0601-1, USN-3539-1, VIGILANCE-VUL-24825
GIMP: buffer overflow via FLI
An attacker can generate a buffer overflow via FLI of GIMP, in order to trigger a denial of service, and possibly to run code...
739133, CVE-2017-17785, DLA-1220-1, DSA-4077-1, FEDORA-2018-67b75f73fa, FEDORA-2018-ccef1ced42, FLIMP, SUSE-SU-2020:0601-1, USN-3539-1, VIGILANCE-VUL-24824
Gimp: denial of service via ICO InfoHeader
An attacker can generate a fatal error via ICO InfoHeader of Gimp, in order to trigger a denial of service...
CVE-2007-3126, openSUSE-SU-2017:0994-1, VIGILANCE-VUL-22452
GIMP: use after free in the XCF parser
An attacker can force the usage of a freed memory area in the XCF file parserof GIMP, in order to trigger a denial of service, and possibly to run code...
bulletinjan2017, CVE-2016-4994, DLA-525-1, DSA-3612-1, FEDORA-2016-20db5e796b, FEDORA-2016-6122983949, FEDORA-2016-acbd6a75f3, openSUSE-SU-2016:1727-1, RHSA-2016:2589-02, SSA:2016-203-01, USN-3025-1, VIGILANCE-VUL-19972
Windows: code execution during application installation
An attacker can invite the victim to download malicious libraries on Windows, in order to run code during the installation of an application requiring these DLL...
sk110055, VIGILANCE-VUL-18671
Our database contains other pages. You can request a free trial to read them.

Display information about GIMP: