Search for packages
| purl | pkg:deb/debian/gimp@2.8.14-1%2Bdeb8u2 |
| Next non-vulnerable version | 2.10.34-1+deb12u10 |
| Latest non-vulnerable version | 3.2.2-1 |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1w47-u2aa-8uaj
Aliases: CVE-2026-2045 |
gimp: GIMP: Remote Code Execution via out-of-bounds write in XWD file parsing |
Affected by 10 other vulnerabilities. |
|
VCID-2k57-pmhe-9uds
Aliases: CVE-2025-2761 |
GIMP FLI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of FLI files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25100. |
Affected by 10 other vulnerabilities. |
|
VCID-2p8s-2h2y-aqg4
Aliases: CVE-2026-2271 |
gimp: GIMP: Denial of service via crafted PSP image file |
Affected by 10 other vulnerabilities. |
|
VCID-2yr2-zppt-47eq
Aliases: CVE-2025-15059 |
gimp: heap-based buffer overflow via specially crafted PSP file |
Affected by 10 other vulnerabilities. |
|
VCID-35p4-a8t3-f3g1
Aliases: CVE-2016-4994 |
security update |
Affected by 30 other vulnerabilities. |
|
VCID-4wae-t183-yydb
Aliases: CVE-2017-17789 |
security update |
Affected by 30 other vulnerabilities. Affected by 23 other vulnerabilities. |
|
VCID-81y4-4cxp-bybu
Aliases: CVE-2025-2760 |
GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XWD files. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before allocating a buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25082. |
Affected by 10 other vulnerabilities. |
|
VCID-99yx-7yr3-dfht
Aliases: CVE-2025-5473 |
gimp: GIMP ICO File Parsing Integer Overflow |
Affected by 10 other vulnerabilities. |
|
VCID-bcwp-42cm-g3et
Aliases: CVE-2023-44444 ZDI-CAN-22097 |
Multiple vulnerabilities have been discovered in GIMP, the worst of which can lead to arbitrary code execution. |
Affected by 30 other vulnerabilities. |
|
VCID-bf8d-qkyh-auds
Aliases: CVE-2007-3126 |
Gimp: context-dependent attackers to cause a denial of service |
Affected by 23 other vulnerabilities. |
|
VCID-bhsc-qy1f-27dj
Aliases: CVE-2025-6035 |
gimp: Gimp Integer Overflow |
Affected by 10 other vulnerabilities. |
|
VCID-dav9-9ar6-gkbn
Aliases: CVE-2022-30067 |
Multiple vulnerabilities have been discovered in GIMP, the worst of which can lead to arbitrary code execution. |
Affected by 10 other vulnerabilities. |
|
VCID-dtpr-ndvm-5udg
Aliases: CVE-2025-48797 |
gimp: Multiple heap buffer overflows in TGA parser |
Affected by 10 other vulnerabilities. |
|
VCID-eybg-sjmd-q7a2
Aliases: CVE-2023-44443 ZDI-CAN-22096 |
Multiple vulnerabilities have been discovered in GIMP, the worst of which can lead to arbitrary code execution. |
Affected by 30 other vulnerabilities. |
|
VCID-g7zy-qgvc-cueg
Aliases: CVE-2017-17784 |
security update |
Affected by 30 other vulnerabilities. Affected by 23 other vulnerabilities. |
|
VCID-gdxp-wy9y-m3h1
Aliases: CVE-2025-10922 |
gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
Affected by 10 other vulnerabilities. |
|
VCID-hkc8-4uw7-2yc3
Aliases: CVE-2017-17788 |
security update |
Affected by 30 other vulnerabilities. Affected by 23 other vulnerabilities. |
|
VCID-hrab-t25s-5ybg
Aliases: CVE-2025-14425 |
gimp: GIMP: Remote Code Execution via JP2 file parsing heap-based buffer overflow |
Affected by 10 other vulnerabilities. |
|
VCID-jy45-8uuz-y7bf
Aliases: CVE-2026-0797 |
gimp: GIMP: Remote Code Execution via ICO File Parsing Vulnerability |
Affected by 10 other vulnerabilities. |
|
VCID-krn9-65fh-sqgq
Aliases: CVE-2025-48798 |
gimp: Multiple use after free in XCF parser |
Affected by 10 other vulnerabilities. |
|
VCID-q23d-29ut-uyhd
Aliases: CVE-2017-17787 |
security update |
Affected by 30 other vulnerabilities. Affected by 23 other vulnerabilities. |
|
VCID-qsyr-7tn1-uyhv
Aliases: CVE-2026-2239 |
gimp: GIMP: Application crash (DoS) via crafted PSD file due to heap-buffer-overflow |
Affected by 10 other vulnerabilities. |
|
VCID-r1ds-par2-5kb4
Aliases: CVE-2017-17786 |
security update |
Affected by 30 other vulnerabilities. Affected by 23 other vulnerabilities. |
|
VCID-rraw-1e9t-x3f3
Aliases: CVE-2026-2048 |
gimp: GIMP: Remote Code Execution via XWD file parsing vulnerability |
Affected by 10 other vulnerabilities. |
|
VCID-s17j-j45c-nqgs
Aliases: CVE-2023-44441 ZDI-CAN-22093 |
Multiple vulnerabilities have been discovered in GIMP, the worst of which can lead to arbitrary code execution. |
Affected by 30 other vulnerabilities. |
|
VCID-tth9-nncy-5qap
Aliases: CVE-2025-14422 |
gimp: GIMP: Remote Code Execution via PNM file parsing integer overflow |
Affected by 10 other vulnerabilities. |
|
VCID-ubet-venh-tqct
Aliases: CVE-2026-2044 |
gimp: GIMP: Remote Code Execution via uninitialized memory in PGM file parsing |
Affected by 10 other vulnerabilities. |
|
VCID-uujf-3fhp-8fgg
Aliases: CVE-2026-2272 |
gimp: GIMP: Memory corruption due to integer overflow in ICO file handling |
Affected by 10 other vulnerabilities. |
|
VCID-wj9c-s6kt-tqag
Aliases: CVE-2017-17785 |
security update |
Affected by 30 other vulnerabilities. Affected by 23 other vulnerabilities. |
|
VCID-ygcy-xz6u-1qav
Aliases: CVE-2023-44442 ZDI-CAN-22094 |
Multiple vulnerabilities have been discovered in GIMP, the worst of which can lead to arbitrary code execution. |
Affected by 30 other vulnerabilities. |
|
VCID-z2up-g7ms-gfg2
Aliases: CVE-2025-10934 |
A vulnerability has been discovered in GIMP, which can lead to execution of arbitrary code. |
Affected by 10 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-35p4-a8t3-f3g1 | security update |
CVE-2016-4994
|
| VCID-4wae-t183-yydb | security update |
CVE-2017-17789
|
| VCID-g7zy-qgvc-cueg | security update |
CVE-2017-17784
|
| VCID-hkc8-4uw7-2yc3 | security update |
CVE-2017-17788
|
| VCID-q23d-29ut-uyhd | security update |
CVE-2017-17787
|
| VCID-r1ds-par2-5kb4 | security update |
CVE-2017-17786
|
| VCID-wj9c-s6kt-tqag | security update |
CVE-2017-17785
|