GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A remote code execution vulnerability has been discovered in GIMP (CVE-2026-2047) with a high CVSS score of 7.8, allowing attackers to execute arbitrary code if a user opens a malicious file or visits a malicious webpage. This means attackers can potentially gain full control of systems running vulnerable GIMP installations. Security teams should prioritize patching GIMP installations and advising users to avoid opening untrusted files or visiting suspicious websites until an official fix is released.