Known Vulnerabilities for products from Gimp
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Gimp".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-2272 | Not Provided | 2026-03-26 | 2026-03-27 | |
| CVE-2026-2271 | Not Provided | 2026-03-26 | 2026-03-27 | |
| CVE-2026-2239 | Not Provided | 2026-03-26 | 2026-03-30 | |
| CVE-2018-12713 | GIMP through 2.10.2 makes g_get_tmp_dir calls to establish temporary filenames, which may result in a filename that already e... | 9.1 - CRITICAL | 2018-06-24 | 2022-02-07 |
| CVE-2017-17789 | In GIMP 2.8.22, there is a heap-based buffer overflow in read_channel_data in plug-ins/common/file-psp.c. | 7.8 - HIGH | 2017-12-20 | 2022-02-07 |
| CVE-2017-17788 | In GIMP 2.8.22, there is a stack-based buffer over-read in xcf_load_stream in app/xcf/xcf.c when there is no '\0' character a... | 5.5 - MEDIUM | 2017-12-20 | 2022-02-07 |
| CVE-2017-17787 | In GIMP 2.8.22, there is a heap-based buffer over-read in read_creator_block in plug-ins/common/file-psp.c. | 7.8 - HIGH | 2017-12-20 | 2022-02-07 |
| CVE-2017-17786 | In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c (related to bgr2rgb.part.1)... | 7.8 - HIGH | 2017-12-20 | 2022-02-07 |
| CVE-2017-17785 | In GIMP 2.8.22, there is a heap-based buffer overflow in the fli_read_brun function in plug-ins/file-fli/fli.c. | 7.8 - HIGH | 2017-12-20 | 2022-02-07 |
| CVE-2017-17784 | In GIMP 2.8.22, there is a heap-based buffer over-read in load_image in plug-ins/common/file-gbr.c in the gbr import parser, ... | 7.8 - HIGH | 2017-12-20 | 2022-02-07 |
| CVE-2016-4994 | Use-after-free vulnerability in the xcf_load_image function in app/xcf/xcf-load.c in GIMP allows remote attackers to cause a ... | 7.8 - HIGH | 2016-07-12 | 2023-02-12 |
| CVE-2013-1978 | Heap-based buffer overflow in the read_xwd_cols function in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.6.9 and e... | 6.8 - MEDIUM | 2013-12-12 | 2023-02-13 |
| CVE-2013-1913 | Integer overflow in the load_image function in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.6.9 and earlier, when ... | 6.8 - MEDIUM | 2013-12-12 | 2023-02-13 |
| CVE-2012-5576 | Multiple stack-based buffer overflows in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.8.2 allow remote attackers t... | 7.5 - HIGH | 2012-12-18 | 2023-02-13 |
| CVE-2012-4245 | The scriptfu network server in GIMP 2.6 does not require authentication, which allows remote attackers to execute arbitrary c... | 6.8 - MEDIUM | 2012-08-31 | 2022-02-07 |
| CVE-2012-3481 | Integer overflow in the ReadImage function in plug-ins/common/file-gif-load.c in the GIF image format plug-in in GIMP 2.8.x a... | 6.8 - MEDIUM | 2012-08-25 | 2023-11-07 |
| CVE-2012-3403 | Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a d... | 6.8 - MEDIUM | 2012-08-25 | 2023-02-13 |
| CVE-2012-3402 | Integer overflow in plug-ins/common/psd.c in the Adobe Photoshop PSD plugin in GIMP 2.2.13 and earlier allows remote attacker... | 6.8 - MEDIUM | 2012-08-25 | 2023-02-13 |
| CVE-2012-3236 | fits-io.c in GIMP before 2.8.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application... | 4.3 - MEDIUM | 2012-07-12 | 2022-02-07 |
| CVE-2012-2763 | Buffer overflow in the readstr_upto function in plug-ins/script-fu/tinyscheme/scheme.c in GIMP 2.6.12 and earlier, and possib... | 7.5 - HIGH | 2012-07-12 | 2022-02-07 |
Known software with vulnerabilities from Gimp
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Gimp | Gimp | - |