CVE-2026-58379

GIMP · GIMP

A heap-based buffer overflow vulnerability in GIMP's Paint Shop Pro (PSP) file parser may allow for arbitrary code execution.

Executive summary

A heap-based buffer overflow in the GIMP PSP file parser on Red Hat Enterprise Linux systems could allow an attacker to execute arbitrary code.

Vulnerability

This is a heap-based buffer overflow (CWE-122) within the Paint Shop Pro (PSP) file format parser. An attacker would likely need to trick an authenticated or local user into opening a specially crafted file to trigger the condition.

Business impact

Successful exploitation could result in full system compromise, including unauthorized code execution with the privileges of the user running GIMP. The CVSS score of 7.3 reflects the high risk of impact, particularly in multi-user or workstation-heavy environments where malicious files may be introduced.

Remediation

Immediate Action: Update the GIMP package via the Red Hat package manager (yum/dnf) as soon as security advisories are released for your specific distribution.

Proactive Monitoring: Audit system logs for application crashes occurring during image processing tasks, which may indicate exploitation attempts.

Compensating Controls: Restrict the opening of untrusted PSP files and utilize standard OS-level security features like SELinux to limit the impact of potential process exploitation.

Exploitation status

Public Exploit Available: false

Analyst recommendation

Users should treat this vulnerability with high urgency, particularly on systems where external image files are processed. Ensure that security updates are applied immediately upon release by Red Hat to mitigate the risk of memory corruption attacks.