CVE-2016-4994
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2016-4994
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-4994.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2016-4994
- Downstream
- Related
- Published
- 2016-07-12T19:59:05.583Z
- Modified
- 2025-11-14T04:40:49.909513Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Use-after-free vulnerability in the xcfloadimage function in app/xcf/xcf-load.c in GIMP allows remote attackers to cause a denial of service (program crash) or possibly execute arbitrary code via a crafted XCF file.
- References
-
- http://www.securityfocus.com/bid/91425
- http://lists.opensuse.org/opensuse-updates/2016-07/msg00005.html
- http://rhn.redhat.com/errata/RHSA-2016-2589.html
- http://www.debian.org/security/2016/dsa-3612
- http://www.securitytracker.com/id/1036226
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.431987
- http://www.ubuntu.com/usn/USN-3025-1
- https://bugzilla.gnome.org/show_bug.cgi?id=767873
- https://git.gnome.org/browse/gimp/commit/?id=e82aaa4b4ee0703c879e35ea9321fff6be3e9b6f
Affected packages
Git / github.com/gnome/gimp
Affected ranges
- Type
- GIT
- Repo
- https://github.com/gnome/gimp
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
BASE_ZERO
BEFORE_GIMAGE_IS_FLAT_REMOVAL
BEFORE_MATTS_CRAZY_TOOL_PATCH
BEFORE_TILE_MADNESS
FOR_PANEL
GIMP_0_99_16
GIMP_0_99_17
GIMP_0_99_18
GIMP_0_99_19
GIMP_0_99_20
GIMP_0_99_21
GIMP_0_99_22
GIMP_0_99_23
GIMP_0_99_24
GIMP_0_99_25
GIMP_0_99_27
GIMP_0_99_28
GIMP_0_99_29
GIMP_19990910
GIMP_1_0_0
GIMP_1_1_0
GIMP_1_1_1
GIMP_1_1_10
GIMP_1_1_11
GIMP_1_1_12
GIMP_1_1_13
GIMP_1_1_14
GIMP_1_1_15
GIMP_1_1_16
GIMP_1_1_17
GIMP_1_1_18
GIMP_1_1_19
GIMP_1_1_2
GIMP_1_1_20
GIMP_1_1_21
GIMP_1_1_22
GIMP_1_1_23
GIMP_1_1_24
GIMP_1_1_25
GIMP_1_1_26
GIMP_1_1_27
GIMP_1_1_28
GIMP_1_1_29
GIMP_1_1_3
GIMP_1_1_30
GIMP_1_1_31
GIMP_1_1_32
GIMP_1_1_4
GIMP_1_1_5
GIMP_1_1_6
GIMP_1_1_7
GIMP_1_1_8
GIMP_1_1_9
GIMP_1_2_0
GIMP_1_3_0
GIMP_1_3_1
GIMP_1_3_10
GIMP_1_3_11
GIMP_1_3_12
GIMP_1_3_13
GIMP_1_3_14
GIMP_1_3_15
GIMP_1_3_16
GIMP_1_3_17
GIMP_1_3_18
GIMP_1_3_19
GIMP_1_3_2
GIMP_1_3_20
GIMP_1_3_21
GIMP_1_3_22
GIMP_1_3_23
GIMP_1_3_24
GIMP_1_3_25
GIMP_1_3_26
GIMP_1_3_27
GIMP_1_3_3
GIMP_1_3_4
GIMP_1_3_5
GIMP_1_3_6
GIMP_1_3_7
GIMP_1_3_8
GIMP_1_3_9
GIMP_2_0_0
GIMP_2_0_1
GIMP_2_0_RC1
GIMP_2_1_0
GIMP_2_1_1
GIMP_2_1_2
GIMP_2_1_3
GIMP_2_1_4
GIMP_2_1_5
GIMP_2_1_6
GIMP_2_1_7
GIMP_2_2_0
GIMP_2_2_1
GIMP_2_2_PRE1
GIMP_2_2_PRE2
GIMP_2_3_0
GIMP_2_3_1
GIMP_2_3_10
GIMP_2_3_11
GIMP_2_3_12
GIMP_2_3_13
GIMP_2_3_14
GIMP_2_3_16
GIMP_2_3_17
GIMP_2_3_18
GIMP_2_3_19
GIMP_2_3_2
GIMP_2_3_3
GIMP_2_3_4
GIMP_2_3_5
GIMP_2_3_6
GIMP_2_3_7
GIMP_2_3_8
GIMP_2_3_9
GIMP_2_4_0_RC1
GIMP_2_4_0_RC2
GIMP_2_4_0_RC3
GIMP_2_4_1
GIMP_2_5_0
GIMP_2_5_1
GIMP_2_5_2
GIMP_2_5_3
GIMP_2_5_4
GIMP_2_6_0
GIMP_2_6_1
GIMP_2_7_0
GIMP_2_7_1
GIMP_2_7_2
GIMP_2_7_3
GIMP_2_7_4
GIMP_2_7_5
GIMP_2_8_0
GIMP_2_8_0_RC1
GIMP_2_8_10
GIMP_2_8_12
GIMP_2_8_14
GIMP_2_8_16
GIMP_2_8_2
GIMP_2_8_4
GIMP_2_8_6
GIMP_2_8_8
GIMP_BEFORE_GTK_2_0
GNOME_2_4_BRANCHPOINT
GNOME_BASE
GNOME_PRINT_0_24
LIBRSVG_2_1_1
LIBRSVG_2_1_2
LIBRSVG_2_1_3
LIBRSVG_2_1_4
LIBRSVG_2_1_5
LIBRSVG_2_2_0
NEEDS_GIMP_2_3_10
PROJECT_SUNLIGHT_ANCHOR
ROSALIA_BEFORE_COMMITTING_DL_AND_GNOME_HELLO
SCRIPT_FU_BEFORE_TINYSCHEME
SCRIPT_FU_MERGE
SNAP_19971121
TINY_FU_0_9_3
TINY_FU_0_9_4
TINY_FU_0_9_5
TINY_FU_0_9_6
TINY_FU_0_9_7
TINY_FU_0_9_8
TINY_FU_1_0_0
TINY_FU_1_0_1
TINY_FU_1_0_RC1
TINY_FU_1_1_0
gimp
release-2-2-4
release-2-2-5
release-2-3-0
release-2-4-0