GHSA-rx3j-28q8-xw3mHighCVSS 7.3

A flaw was found in GIMP's Paint Shop Pro (PSP) file format parser. This heap buffer overflow...

Published
July 3, 2026
Last Modified
July 3, 2026

🔗 CVE IDs covered (1)

📋 Description

A flaw was found in GIMP's Paint Shop Pro (PSP) file format parser. This heap buffer overflow vulnerability allows a remote attacker to cause arbitrary code execution or a denial of service (DoS) by tricking a user into opening a specially crafted PSP image file. The vulnerability occurs because the software incorrectly calculates buffer sizes when processing low bit-depth images, leading to an overwrite of adjacent memory.

🔗 References (6)