Gimp/plug-ins at 6ac8031c9555667e080fef0324fca9f28a02e5ab - dallasgroot/Gimp - Dallas Groot: Beyond coding. We Forge. I am Groot

History

Jacob Boerema 0e63f096fa plug-ins: Fix #15732 PSP File Parsing Integer Overflow... Leading to Heap Corruption An integer overflow vulnerability has been identified in the PSP (Paint Shop Pro) file parser of GIMP. The issue occurs in the read_creator_block() function, where the Creator metadata block is processed. Specifically, a 32-bit length value read from the file is used directly for memory allocation without proper validation. Trigger -> when length is set to 0xFFFFFFFF To fix this, we check that using that length doesn't exceed the end of the creator block. If it does, we return with an error message.		2026-01-24 09:23:10 -05:00
..
common	plug-ins: Fix #15732 PSP File Parsing Integer Overflow...	2026-01-24 09:23:10 -05:00
file-bmp	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
file-dds	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
file-exr	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
file-faxg3	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
file-fits	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
file-fli	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
file-icns	plug-ins: Resolve ZDI-CAN-28530 for ICNS load	2026-01-18 14:39:41 -03:00
file-ico	plug-ins: Add overflow checks for ICO loading	2026-01-12 19:58:41 -03:00
file-jpeg	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
file-psd	plug-ins: fix unitialized warning in psd loader	2026-01-06 17:18:27 -03:00
file-raw	plugins: Make file-raw-utils.c use proper macOS 10.10+ API	2026-01-11 14:58:37 -03:00
file-sgi	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
file-tiff	Issue #12816 : fix custom procedure config parasite.	2026-01-21 23:02:43 +01:00
file-webp	plug-ins: Use WebPConfigLosslessPreset () for...	2026-01-06 17:18:37 -03:00
flame	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
fractal-explorer	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
gfig	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
gimpressionist	plug-ins: change gimpressionist button labels to Delete...	2026-01-21 21:53:02 +01:00
gradient-flare	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
help	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
help-browser	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
ifs-compose	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
imagemap	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
lighting	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
map-object	plug-ins/map-object: Clarify widget variable name	2026-01-22 18:58:27 +01:00
metadata	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
pagecurl	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
print	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
python	plug-ins: Fix .py plugins on non-relocatable macOS builds	2026-01-15 18:59:34 -03:00
screenshot	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
script-fu	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
selection-to-path	plug-ins: indentation fix.	2026-01-21 21:58:25 +01:00
twain	plug-ins: Do not call in-build-gimp.py before building plugins	2026-01-04 10:43:58 -03:00
generate_mime_ext.py	build/macos, plug-ins: Generate file associations for macOS automatically	2026-01-17 18:18:36 -03:00
meson.build	build/macos, plug-ins: Generate file associations for macOS automatically	2026-01-17 18:18:36 -03:00