Product
high
advisory
CVE-2026-58384: GIMP PSD Parser Integer Overflow Leads to RCE/DoS
2 TTPs 1 CVEAn integer overflow vulnerability (CVE-2026-58384) exists in GIMP's PSD parser within the `read_RLE_channel()` function, leading to undersized heap allocations that can cause subsequent heap memory corruption, potentially resulting in denial of service or arbitrary code execution.
GIMP +1
vulnerability
rce
dos
linux
heap-overflow
2t
1c
high
threat
CVE-2026-58380: GIMP PNM Parser Off-by-One Error Leads to RCE
1 CVEA high-severity off-by-one error, CVE-2026-58380, in GIMP's PNM file format parser (specifically the `pnmscanner_gettoken()` function) allows an attacker to corrupt memory by crafting a malicious PNM file, potentially leading to denial of service or arbitrary code execution when the file is opened.
exploited
GIMP +4
vulnerability
memory-corruption
buffer-overflow
linux
1c