[Git][security-tracker-team/security-tracker][master] Add commit references for gimp issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Feb 21 20:01:08 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
beb0cb6a by Salvatore Bonaccorso at 2026-02-21T21:00:40+01:00
Add commit references for gimp issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -30,24 +30,28 @@ CVE-2026-2048 (GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution V
NOTE: https://gitlab.gnome.org/GNOME/gimp/-/issues/15554
NOTE: https://gitlab.gnome.org/GNOME/gimp/-/merge_requests/2586
NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/57712677007793118388c5be6fb8231f22a2b341
+ NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/fa69ac5ec5692f675de5c50a6df758f7d3e45117 (GIMP_3_0_8)
CVE-2026-2047 (GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Executio ...)
- gimp <unfixed>
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-26-120/
NOTE: https://gitlab.gnome.org/GNOME/gimp/-/issues/15437
NOTE: https://gitlab.gnome.org/GNOME/gimp/-/merge_requests/2600
NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/dd2faac351f1ff2588529fedc606e6a5f815577c
+ NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/5873e16f80cf4152d25a4c86b08553008a331e90 (GIMP_3_0_8)
CVE-2026-2045 (GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulner ...)
- gimp <unfixed>
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-26-119/
NOTE: https://gitlab.gnome.org/GNOME/gimp/-/issues/15293
NOTE: https://gitlab.gnome.org/GNOME/gimp/-/merge_requests/2597
NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/68b27dfb1cbd9b3f22d7fa624dbab8647ee5f275
+ NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/bb896f67942557658b3fbfc67a1c073775c002c7 (GIMP_3_0_8)
CVE-2026-2044 (GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulne ...)
- gimp <unfixed>
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-26-118/
NOTE: https://gitlab.gnome.org/GNOME/gimp/-/issues/15287
NOTE: https://gitlab.gnome.org/GNOME/gimp/-/merge_requests/2569
NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/112a5e038f0646eae5ae314988ec074433d2b365
+ NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/3b5f9ec2b4c03cf4a51a5414f2793844c26747e5 (GIMP_3_0_8)
CVE-2026-2043 (Nagios Host esensors_websensor_configwizard_func Command Injection Rem ...)
NOT-FOR-US: Nagios XI
CVE-2026-2042 (Nagios Host monitoringwizard Command Injection Remote Code Execution V ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/beb0cb6a51d8d6a6a13e0c0720a1d84d3538a241
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/beb0cb6a51d8d6a6a13e0c0720a1d84d3538a241
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260221/304a2ad4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list