First published: Wed Nov 15 2023(Updated: )
[GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability]
Credit: zdi-disclosures@trendmicro.com
Affected Software | Affected Version | How to fix |
---|---|---|
ubuntu/gimp | <2.10.30-1ubuntu0.1 | 2.10.30-1ubuntu0.1 |
ubuntu/gimp | <2.10.34-1ubuntu0.23.04.1 | 2.10.34-1ubuntu0.23.04.1 |
ubuntu/gimp | <2.10.34-1ubuntu0.23.10.1 | 2.10.34-1ubuntu0.23.10.1 |
GIMP GIMP | ||
redhat/GIMP | <2.10.36 | 2.10.36 |
debian/gimp | 2.10.8-2 2.10.8-2+deb10u1 2.10.22-4+deb11u2 2.10.22-4+deb11u1 2.10.34-1+deb12u2 2.10.34-1+deb12u1 2.10.36-2 2.10.36-3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-44443 is a vulnerability that allows remote attackers to execute arbitrary code on affected installations of GIMP.
The CVE-2023-44443 vulnerability can be exploited by visiting a malicious page or opening a malicious file.
The GIMP software is affected by CVE-2023-44443.
CVE-2023-44443 has a severity value of 7.8 (high).
To fix CVE-2023-44443, update GIMP to version 2.10.36 or newer.