EUVD-2026-16166
GHSA-wmqx-rmqw-vxp8
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
Lifecycle Timeline
4Tags
Description
A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP’s PCX file loader due to an off-by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX image. Successful exploitation could lead to out-of-bounds memory disclosure and a possible application crash, resulting in a Denial of Service (DoS).
Analysis
GIMP's PCX file loader contains a heap buffer over-read vulnerability caused by an off-by-one error (CWE-193) that allows local attackers to trigger out-of-bounds memory disclosure and application crashes by opening specially crafted PCX images. Red Hat Enterprise Linux versions 6 through 9 are affected. …
Sign in for full analysis, threat intelligence, and remediation guidance.
Remediation
Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Monitor vendor channels for patch availability.
Sign in for detailed remediation steps.
Priority Score
Vendor Status
Debian
| Release | Status | Fixed Version | Urgency |
|---|---|---|---|
| bullseye | vulnerable | 2.10.22-4+deb11u2 | - |
| bullseye (security) | vulnerable | 2.10.22-4+deb11u7 | - |
| bookworm | vulnerable | 2.10.34-1+deb12u5 | - |
| bookworm (security) | vulnerable | 2.10.34-1+deb12u9 | - |
| trixie, trixie (security) | vulnerable | 3.0.4-3+deb13u7 | - |
| forky | vulnerable | 3.2.0~RC3-1 | - |
| sid | vulnerable | 3.2.0-1 | - |
| (unstable) | fixed | (unfixed) | - |
Share
External POC / Exploit Code
Leaving vuln.today