Information on source package gimp

Available versions

ReleaseVersion
jessie2.8.14-1+deb8u2
stretch2.8.18-1+deb9u2
stretch (security)2.8.18-1+deb9u1
buster2.10.8-2
buster (security)2.10.8-2+deb10u1
bullseye2.10.22-4+deb11u2
bullseye (security)2.10.22-4+deb11u1
bookworm2.10.34-1+deb12u2
bookworm (security)2.10.34-1+deb12u1
trixie2.10.36-2
sid2.10.36-3

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2023-44444vulnerablefixedfixedfixedfixedfixedfixedGIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability
CVE-2023-44442vulnerablefixedfixedfixedfixedfixedfixedGIMP PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
CVE-2022-30067vulnerablefixedfixedvulnerablefixedfixedfixedGIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2022-32990vulnerablevulnerablevulnerablevulnerablefixedfixedfixedAn issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allow ...
CVE-2018-12713vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableGIMP through 2.10.2 makes g_get_tmp_dir calls to establish temporary f ...
CVE-2012-4245vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableThe scriptfu network server in GIMP 2.6 does not require authenticatio ...
CVE-2007-3126vulnerablevulnerablefixedfixedfixedfixedfixedGimp before 2.8.22 allows context-dependent attackers to cause a denia ...

Resolved issues

BugDescription
CVE-2023-44443GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability
CVE-2023-44441GIMP DDS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
CVE-2017-17789In GIMP 2.8.22, there is a heap-based buffer overflow in read_channel_ ...
CVE-2017-17788In GIMP 2.8.22, there is a stack-based buffer over-read in xcf_load_st ...
CVE-2017-17787In GIMP 2.8.22, there is a heap-based buffer over-read in read_creator ...
CVE-2017-17786In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in ...
CVE-2017-17785In GIMP 2.8.22, there is a heap-based buffer overflow in the fli_read_ ...
CVE-2017-17784In GIMP 2.8.22, there is a heap-based buffer over-read in load_image i ...
CVE-2016-4994Use-after-free vulnerability in the xcf_load_image function in app/xcf ...
CVE-2013-1978Heap-based buffer overflow in the read_xwd_cols function in file-xwd.c ...
CVE-2013-1953Integer underflow in the input_bmp_reader function in input-bmp.c in A ...
CVE-2013-1913Integer overflow in the load_image function in file-xwd.c in the X Win ...
CVE-2012-5576Multiple stack-based buffer overflows in file-xwd.c in the X Window Du ...
CVE-2012-3481Integer overflow in the ReadImage function in plug-ins/common/file-gif ...
CVE-2012-3403Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP ...
CVE-2012-3402Integer overflow in plug-ins/common/psd.c in the Adobe Photoshop PSD p ...
CVE-2012-3236fits-io.c in GIMP before 2.8.1 allows remote attackers to cause a deni ...
CVE-2012-2763Buffer overflow in the readstr_upto function in plug-ins/script-fu/tin ...
CVE-2011-2896The LZW decompressor in the LWZReadByte function in giftoppm.c in the ...
CVE-2011-1782Heap-based buffer overflow in the read_channel_data function in file-p ...
CVE-2011-1178Multiple integer overflows in the load_image function in file-pcx.c in ...
CVE-2010-4543Heap-based buffer overflow in the read_channel_data function in file-p ...
CVE-2010-4542Stack-based buffer overflow in the gfig_read_parameter_gimp_rgb functi ...
CVE-2010-4541Stack-based buffer overflow in the loadit function in plug-ins/common/ ...
CVE-2010-4540Stack-based buffer overflow in the load_preset_response function in pl ...
CVE-2009-3909Integer overflow in the read_channel_data function in plug-ins/file-ps ...
CVE-2009-1570Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-re ...
CVE-2007-3741The (1) psp (aka .tub), (2) bmp, (3) pcx, and (4) psd plugins in gimp ...
CVE-2007-2949Integer overflow in the seek_to_and_unpack_pixeldata function in the p ...
CVE-2007-2356Stack-based buffer overflow in the set_color_table function in sunras. ...
CVE-2006-4519Multiple integer overflows in the image loader plug-ins in GIMP before ...
CVE-2006-3404Buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c ...

Security announcements

DSA / DLADescription
DSA-5564-1gimp - security update
DLA-3659-1gimp - security update
ELA-1005-1gimp - security update
DSA-4077-1gimp - security update
DLA-1220-1gimp - security update
DSA-3612-1gimp - security update
DLA-525-1gimp - security update
DSA-2813-1gimp - several
DSA-2426-1gimp - several
DSA-1335-1gimp
DSA-1301-1gimp
DSA-1116gimp - buffer overflow

Search for package or bug name: Reporting problems