{"url":"http://public2.vulnerablecode.io/api/packages/43181?format=json","purl":"pkg:deb/debian/gimp@2.6.11-3?distro=trixie","type":"deb","namespace":"debian","name":"gimp","version":"2.6.11-3","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"2.6.11-5","latest_non_vulnerable_version":"3.2.4-2","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/201957?format=json","vulnerability_id":"VCID-gduy-xbhg-jyg1","summary":"Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a PSP_COMP_RLE (aka RLE compression) image file that begins a long run count at the end of the image.  NOTE: some of these details are obtained from third party information.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4543.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1782.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1782.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1782","reference_id":"","reference_type":"","scores":[{"value":"0.01531","scoring_system":"epss","scoring_elements":"0.8172","published_at":"2026-06-11T12:55:00Z"},{"value":"0.01531","scoring_system":"epss","scoring_elements":"0.81781","published_at":"2026-06-12T12:55:00Z"},{"value":"0.01531","scoring_system":"epss","scoring_elements":"0.8179","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1782"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1782","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1782"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629830","reference_id":"629830","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629830"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=704512","reference_id":"704512","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=704512"},{"reference_url":"https://usn.ubuntu.com/1147-1/","reference_id":"USN-1147-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1147-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/43181?format=json","purl":"pkg:deb/debian/gimp@2.6.11-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.6.11-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43171?format=json","purl":"pkg:deb/debian/gimp@2.10.22-4%2Bdeb11u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8xbe-9hp9-bfh4"},{"vulnerability":"VCID-d1rw-etzn-37bs"},{"vulnerability":"VCID-eyyg-rjw2-bkau"},{"vulnerability":"VCID-gefv-9vbu-f7ac"},{"vulnerability":"VCID-mqa4-pepu-53gz"},{"vulnerability":"VCID-wupj-s4k2-h7d5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.22-4%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43169?format=json","purl":"pkg:deb/debian/gimp@2.10.34-1%2Bdeb12u10?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-d1rw-etzn-37bs"},{"vulnerability":"VCID-eyyg-rjw2-bkau"},{"vulnerability":"VCID-gefv-9vbu-f7ac"},{"vulnerability":"VCID-mqa4-pepu-53gz"},{"vulnerability":"VCID-wupj-s4k2-h7d5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.10.34-1%252Bdeb12u10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43173?format=json","purl":"pkg:deb/debian/gimp@3.0.4-3%2Bdeb13u8?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4her-sras-4uhg"},{"vulnerability":"VCID-d1rw-etzn-37bs"},{"vulnerability":"VCID-eyyg-rjw2-bkau"},{"vulnerability":"VCID-mqa4-pepu-53gz"},{"vulnerability":"VCID-wupj-s4k2-h7d5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.0.4-3%252Bdeb13u8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43172?format=json","purl":"pkg:deb/debian/gimp@3.2.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@3.2.4-2%3Fdistro=trixie"}],"aliases":["CVE-2011-1782"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gduy-xbhg-jyg1"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gimp@2.6.11-3%3Fdistro=trixie"}