Количество 27
Количество 27
SUSE-SU-2023:4697-1
Security update for gimp
RLSA-2024:0861
Important: gimp:2.8 security update
ELSA-2024-10666
ELSA-2024-10666: gimp:2.8.22 security update (IMPORTANT)
ELSA-2024-0861
ELSA-2024-0861: gimp:2.8 security update (IMPORTANT)
RLSA-2025:0746
Important: gimp:2.8 security update
ELSA-2025-0746
ELSA-2025-0746: gimp:2.8 security update (IMPORTANT)
SUSE-SU-2023:4692-1
Security update for gimp
RLSA-2025:7417
Important: gimp security update
RLSA-2025:3617
Important: gimp security update
RLSA-2024:0675
Important: gimp security update
ELSA-2025-7417
ELSA-2025-7417: gimp security update (IMPORTANT)
ELSA-2025-3617
ELSA-2025-3617: gimp security update (IMPORTANT)
ELSA-2024-0675
ELSA-2024-0675: gimp security update (IMPORTANT)
CVE-2023-44444
GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSP files. Crafted data in a PSP file can trigger an off-by-one error when calculating a location to write within a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. . Was ZDI-CAN-22097.
CVE-2023-44444
GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSP files. Crafted data in a PSP file can trigger an off-by-one error when calculating a location to write within a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. . Was ZDI-CAN-22097.
CVE-2023-44444
GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSP files. Crafted data in a PSP file can trigger an off-by-one error when calculating a location to write within a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. . Was ZDI-CAN-22097.
CVE-2023-44444
GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. ...
CVE-2023-44442
GIMP PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSD files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current process. Was ZDI-CAN-22094.
CVE-2023-44442
GIMP PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSD files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current process. Was ZDI-CAN-22094.
CVE-2023-44442
GIMP PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSD files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current process. Was ZDI-CAN-22094.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | SUSE-SU-2023:4697-1 Security update for gimp | около 2 лет назад | ||
 | RLSA-2024:0861 Important: gimp:2.8 security update | почти 2 года назад | ||
| ELSA-2024-10666 ELSA-2024-10666: gimp:2.8.22 security update (IMPORTANT) | 12 месяцев назад | ||
| ELSA-2024-0861 ELSA-2024-0861: gimp:2.8 security update (IMPORTANT) | почти 2 года назад | ||
| RLSA-2025:0746 Important: gimp:2.8 security update | 10 месяцев назад | ||
| ELSA-2025-0746 ELSA-2025-0746: gimp:2.8 security update (IMPORTANT) | 11 месяцев назад | ||
| SUSE-SU-2023:4692-1 Security update for gimp | около 2 лет назад | ||
| RLSA-2025:7417 Important: gimp security update | 5 месяцев назад | ||
| RLSA-2025:3617 Important: gimp security update | 5 месяцев назад | ||
| RLSA-2024:0675 Important: gimp security update | больше 1 года назад | ||
| ELSA-2025-7417 ELSA-2025-7417: gimp security update (IMPORTANT) | 7 месяцев назад | ||
| ELSA-2025-3617 ELSA-2025-3617: gimp security update (IMPORTANT) | 8 месяцев назад | ||
| ELSA-2024-0675 ELSA-2024-0675: gimp security update (IMPORTANT) | почти 2 года назад | ||
 | CVE-2023-44444 GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSP files. Crafted data in a PSP file can trigger an off-by-one error when calculating a location to write within a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. . Was ZDI-CAN-22097. | CVSS3: 7.8 | 52% Средний | больше 1 года назад |
 | CVE-2023-44444 GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSP files. Crafted data in a PSP file can trigger an off-by-one error when calculating a location to write within a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. . Was ZDI-CAN-22097. | CVSS3: 7.8 | 52% Средний | около 2 лет назад |
 | CVE-2023-44444 GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSP files. Crafted data in a PSP file can trigger an off-by-one error when calculating a location to write within a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. . Was ZDI-CAN-22097. | CVSS3: 7.8 | 52% Средний | больше 1 года назад |
| CVE-2023-44444 GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. ... | CVSS3: 7.8 | 52% Средний | больше 1 года назад |
| CVE-2023-44442 GIMP PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSD files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current process. Was ZDI-CAN-22094. | CVSS3: 7.8 | 60% Средний | больше 1 года назад |
| CVE-2023-44442 GIMP PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSD files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current process. Was ZDI-CAN-22094. | CVSS3: 7.8 | 60% Средний | около 2 лет назад |
| CVE-2023-44442 GIMP PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSD files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current process. Was ZDI-CAN-22094. | CVSS3: 7.8 | 60% Средний | больше 1 года назад |
Уязвимостей на страницу