GHSA-pp89-6qxc-wh8fHighCVSS 7.3

A flaw was found in GIMP's PSD parser. An integer overflow in read_RLE_channel() can cause an...

Published
July 7, 2026
Last Modified
July 7, 2026

🔗 CVE IDs covered (1)

📋 Description

A flaw was found in GIMP's PSD parser. An integer overflow in read_RLE_channel() can cause an undersized heap allocation for the RLE row-length table, after which subsequent per-row writes corrupt heap memory. This could lead to memory corruption, potentially resulting in denial of service or arbitrary code execution.

🔗 References (6)