Nixpkgs security tracker
7.3 HIGH
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
Gimp: multiple heap buffer overflows in tga parser
A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing a heap buffer overflow.
References
Affected products
- *
- <3.0.0
- *
Matching in nixpkgs
pkgs.zigimports
Automatically remove unused imports and globals from Zig files
pkgs.gimpPlugins.gap
GIMP Animation Package
-
nixos-unstable 2.6.0-unstable-2023-05-20
- nixpkgs-unstable 2.6.0-unstable-2023-05-20
- nixos-unstable-small 2.6.0-unstable-2023-05-20
pkgs.gimpPlugins.bimp
Batch Image Manipulation Plugin for GIMP
pkgs.gimpPlugins.gimp
GNU Image Manipulation Program
pkgs.gimpPlugins.gmic
GIMP plugin for the G'MIC image processing framework
pkgs.gimp-with-plugins
GNU Image Manipulation Program
pkgs.gimp3Plugins.gimp
GNU Image Manipulation Program
pkgs.gimp3Plugins.gmic
GIMP plugin for the G'MIC image processing framework
pkgs.gimp3-with-plugins
GNU Image Manipulation Program
pkgs.gimpPlugins.fourier
GIMP plug-in to do the fourier transform
pkgs.gimpPlugins.farbfeld
Gimp plug-in for the farbfeld image format
-
nixos-unstable 2019-08-12
- nixpkgs-unstable 2019-08-12
- nixos-unstable-small 2019-08-12
pkgs.gimpPlugins.lightning
None
pkgs.gimpPlugins.lqrPlugin
None
pkgs.gimpPlugins.texturize
None
-
nixos-unstable 2.2+unstable=2021-12-03
- nixpkgs-unstable 2.2+unstable=2021-12-03
- nixos-unstable-small 2.2+unstable=2021-12-03
pkgs.gimp3Plugins.lightning
None
pkgs.gimpPlugins.gimplensfun
GIMP plugin to correct lens distortion using the lensfun library and database
-
nixos-unstable 2018-10-21
- nixpkgs-unstable 2018-10-21
- nixos-unstable-small 2018-10-21
pkgs.gimpPlugins.resynthesizer
None
pkgs.gimpPlugins.waveletSharpen
None
Package maintainers
-
@jtojnar Jan Tojnar <jtojnar@gmail.com>
-
@sikmir Nikolay Korotkiy <sikmir@disroot.org>
-
@AndersonTorres Anderson Torres <torres.anderson.85@protonmail.com>
-
@jmbaur Jared Baur <jaredbaur@fastmail.com>