GIMP Can Run Malicious Code from Some Image Files

Summary

If you use GIMP, be cautious when opening PGM image files from unknown sources. A hacker could trick you into opening a malicious file, allowing them to run unauthorized code on your computer. Update to the latest version of GIMP to fix this issue.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
gimp	gimp	3.0.6	–

Original title

GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interact...

Original description

GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

The specific flaw exists within the parsing of PGM files. The issue results from the lack of proper initialization of memory prior to accessing it. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-28158.

nvd CVSS3.0 7.8

Vulnerability type

CWE-908 Use of Uninitialized Resource

https://gitlab.gnome.org/GNOME/gimp/-/merge_requests/2569/diffs?commit_id=112a5e... Issue Tracking Patch Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-26-118/ Third Party Advisory