- Description
- A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug-in. The issue occurs due to unchecked multiplication of image dimensions, such as width, height, and bytes-per-pixel (img_bpp), which can result in allocating insufficient memory and subsequently performing out-of-bounds writes. This issue could lead to heap corruption, a potential denial of service (DoS), or arbitrary code execution in certain scenarios.
- Source
- secalert@redhat.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Primary
- Base score
- 6.6
- Impact score
- 4.7
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
- Severity
- MEDIUM
- secalert@redhat.com
- CWE-787
- Hype score
- Not currently trending
CVE-2025-6035 Integer Overflow in GIMP Despeckle Plug-in Enables Potential Code Execution https://t.co/nGbNNSZEWb
@VulmonFeeds
13 Jun 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-6035 A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug-in. The issue occurs due to unchecked multiplication of image dimension… https://t.co/GpWJq1ClRQ
@CVEnew
13 Jun 2025
376 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes