Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.5
GIMP Crashes or Becomes Unresponsive from Malicious Image File
UBUNTU-CVE-2022-30067
Summary
GIMP users may experience a crash or system instability when opening a specially crafted image file. This issue occurs when GIMP tries to allocate an excessive amount of memory, leading to a program crash. To protect your system, update GIMP to the latest version.
What to do
- Update canonical gimp to version 2.10.18-1ubuntu0.1.
- Update canonical gimp to version 2.10.30-1ubuntu0.1.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| Ubuntu:Pro:16.04:LTS | canonical | gimp | All versions |
| Ubuntu:Pro:18.04:LTS | canonical | gimp | All versions |
| Ubuntu:20.04:LTS | canonical | gimp |
< 2.10.18-1ubuntu0.1 Fix: upgrade to 2.10.18-1ubuntu0.1
|
| Ubuntu:22.04:LTS | canonical | gimp |
< 2.10.30-1ubuntu0.1 Fix: upgrade to 2.10.30-1ubuntu0.1
|
Original title
GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of memory, resulting in insufficient memory or program crash.
Original description
GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of memory, resulting in insufficient memory or program crash.
osv CVSS3.1
5.5
- https://ubuntu.com/security/CVE-2022-30067 Third Party Advisory
- https://ubuntu.com/security/notices/USN-6521-1 Vendor Advisory
- https://www.cve.org/CVERecord?id=CVE-2022-30067 Third Party Advisory
Published: 17 May 2022 · Updated: 13 Mar 2026 · First seen: 13 Mar 2026