CVE-2023-44444

2023-11-1500:00:00

ubuntu.com

cve-2023-44444

gimp

psp file

parsing

off-by-one

remote code execution

vulnerability

debian

gnome

gnu

gimp 2.10

commit

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.0005 Low

EPSS

Percentile

16.2%

JSON

GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This
vulnerability allows remote attackers to execute arbitrary code on affected
installations of GIMP. User interaction is required to exploit this
vulnerability in that the target must visit a malicious page or open a
malicious file. The specific flaw exists within the parsing of PSP files.
Crafted data in a PSP file can trigger an off-by-one error when calculating
a location to write within a heap-based buffer. An attacker can leverage
this vulnerability to execute code in the context of the current process.
Was ZDI-CAN-22097.

Bugs

Notes

Author	Note
mdeslaur	same 2.10 commit as CVE-2023-44443

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchgimp< anyUNKNOWN
ubuntu20.04noarchgimp< 2.10.18-1ubuntu0.1UNKNOWN
ubuntu22.04noarchgimp< 2.10.30-1ubuntu0.1UNKNOWN
ubuntu23.04noarchgimp< 2.10.34-1ubuntu0.23.04.1UNKNOWN
ubuntu23.10noarchgimp< 2.10.34-1ubuntu0.23.10.1UNKNOWN
ubuntu16.04noarchgimp< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	gimp	< any	UNKNOWN
ubuntu	20.04	noarch	gimp	< 2.10.18-1ubuntu0.1	UNKNOWN
ubuntu	22.04	noarch	gimp	< 2.10.30-1ubuntu0.1	UNKNOWN
ubuntu	23.04	noarch	gimp	< 2.10.34-1ubuntu0.23.04.1	UNKNOWN
ubuntu	23.10	noarch	gimp	< 2.10.34-1ubuntu0.23.10.1	UNKNOWN
ubuntu	16.04	noarch	gimp	< any	UNKNOWN