Fluid Attacks Database

Description

A flaw was found in GIMP. A remote attacker could exploit an integer overflow vulnerability in the FITS image loader by providing a specially crafted FITS file. This integer overflow leads to a zero-byte memory allocation, which is then subjected to a heap buffer overflow when processing pixel data. Successful exploitation could result in a denial of service (DoS) or potentially arbitrary code execution.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 12	gimp	=2.10.34-1 \|\| =2.10.34-1+deb12u1 \|\| =2.10.34-1+deb12u10 \|\| =2.10.34-1+deb12u2 \|\| =2.10.34-1+deb12u3 \|\| =2.10.34-1+deb12u4 \|\| =2.10.34-1+deb12u5 \|\| =2.10.34-1+deb12u6 \|\| =2.10.34-1+deb12u7 \|\| =2.10.34-1+deb12u8 \|\| =2.10.34-1+deb12u9 \|\| =2.10.36-1 \|\| =2.10.36-2 \|\| =2.10.36-3 \|\| =2.10.38-1 \|\| =2.10.38-2 \|\| =2.99.10-1 \|\| =2.99.12-1 \|\| =2.99.12-2 \|\| =2.99.14-1 \|\| =2.99.14-2 \|\| =2.99.16-1 \|\| =2.99.16-2 \|\| =2.99.18-1 \|\| =3.0.0-1 \|\| =3.0.0-2 \|\| =3.0.0~rc1-1 \|\| =3.0.0~rc1-3 \|\| =3.0.0~rc1-4 \|\| =3.0.0~rc2-1 \|\| =3.0.0~rc3-1 \|\| =3.0.2-1 \|\| =3.0.2-2 \|\| =3.0.2-3 \|\| =3.0.2-3.1 \|\| =3.0.4-1 \|\| =3.0.4-2 \|\| =3.0.4-3 \|\| =3.0.4-4 \|\| =3.0.4-5 \|\| =3.0.4-6 \|\| =3.0.4-6.1 \|\| =3.0.4-6.2 \|\| =3.0.6-1 \|\| =3.2.0-1 \|\| =3.2.0~rc2-1 \|\| =3.2.0~rc2-2 \|\| =3.2.0~rc2-3 \|\| =3.2.0~rc2-3.1 \|\| =3.2.0~rc2-3.2 \|\| =3.2.0~rc2-3.3 \|\| =3.2.0~rc3-1 \|\| =3.2.2-1 \|\| =3.2.4-1	-
debian 14	gimp	=3.0.4-3 \|\| =3.0.4-4 \|\| =3.0.4-5 \|\| =3.0.4-6 \|\| =3.0.4-6.1 \|\| =3.0.4-6.2 \|\| =3.0.6-1 \|\| =3.2.0-1 \|\| =3.2.0~rc2-1 \|\| =3.2.0~rc2-2 \|\| =3.2.0~rc2-3 \|\| =3.2.0~rc2-3.1 \|\| =3.2.0~rc2-3.2 \|\| =3.2.0~rc2-3.3 \|\| =3.2.0~rc3-1 \|\| >=0 <3.2.2-1	3.2.2-1
rpm rhel7	gimp	-	-
rpm rhel8	gimp	-	-
debian 13	gimp	=3.0.4-3 \|\| =3.0.4-3+deb13u1 \|\| =3.0.4-3+deb13u2 \|\| =3.0.4-3+deb13u3 \|\| =3.0.4-3+deb13u4 \|\| =3.0.4-3+deb13u5 \|\| =3.0.4-3+deb13u6 \|\| =3.0.4-3+deb13u7 \|\| =3.0.4-3+deb13u8 \|\| =3.0.4-4 \|\| =3.0.4-5 \|\| =3.0.4-6 \|\| =3.0.4-6.1 \|\| =3.0.4-6.2 \|\| =3.0.6-1 \|\| =3.2.0-1 \|\| =3.2.0~rc2-1 \|\| =3.2.0~rc2-2 \|\| =3.2.0~rc2-3 \|\| =3.2.0~rc2-3.1 \|\| =3.2.0~rc2-3.2 \|\| =3.2.0~rc2-3.3 \|\| =3.2.0~rc3-1 \|\| =3.2.2-1 \|\| =3.2.4-1	-
debian 11	gimp	=2.10.22-4 \|\| =2.10.22-4+deb11u1 \|\| =2.10.22-4+deb11u2 \|\| =2.10.22-4+deb11u3 \|\| =2.10.22-4+deb11u4 \|\| =2.10.22-4+deb11u5 \|\| =2.10.22-4+deb11u6 \|\| =2.10.22-4+deb11u7 \|\| =2.10.22-4+deb11u8 \|\| =2.10.24-1 \|\| =2.10.24-2 \|\| =2.10.26-1 \|\| =2.10.28-1 \|\| =2.10.30-1 \|\| =2.10.32-1 \|\| =2.10.34-1 \|\| =2.10.36-1 \|\| =2.10.36-2 \|\| =2.10.36-3 \|\| =2.10.38-1 \|\| =2.10.38-2 \|\| =2.99.10-1 \|\| =2.99.12-1 \|\| =2.99.12-2 \|\| =2.99.14-1 \|\| =2.99.14-2 \|\| =2.99.16-1 \|\| =2.99.16-2 \|\| =2.99.18-1 \|\| =3.0.0-1 \|\| =3.0.0-2 \|\| =3.0.0~rc1-1 \|\| =3.0.0~rc1-3 \|\| =3.0.0~rc1-4 \|\| =3.0.0~rc2-1 \|\| =3.0.0~rc3-1 \|\| =3.0.2-1 \|\| =3.0.2-2 \|\| =3.0.2-3 \|\| =3.0.2-3.1 \|\| =3.0.4-1 \|\| =3.0.4-2 \|\| =3.0.4-3 \|\| =3.0.4-4 \|\| =3.0.4-5 \|\| =3.0.4-6 \|\| =3.0.4-6.1 \|\| =3.0.4-6.2 \|\| =3.0.6-1 \|\| =3.2.0-1 \|\| =3.2.0~rc2-1 \|\| =3.2.0~rc2-2 \|\| =3.2.0~rc2-3 \|\| =3.2.0~rc2-3.1 \|\| =3.2.0~rc2-3.2 \|\| =3.2.0~rc2-3.3 \|\| =3.2.0~rc3-1 \|\| =3.2.2-1 \|\| =3.2.4-1	-
rpm rhel6	gimp	-	-
rpm rhel9	gimp	-	-

Aliases

1. CVE-2026-409152. NVD-2026-409153. OSV-DEBIAN-2026-409154. OSV-2026-409155. SECURITY-TRACKER-CVE-2026-40915

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.