PT-2021-6874 · Gnu+12 · Gegl+13

Published

2021-12-15

·

Updated

2025-10-22

·

CVE-2021-45463

CVSS v2.0

9.3

High

VectorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions GIMP versions prior to 2.10.30 GEGL versions prior to 0.4.34
Description The issue is related to the load cache function in GEGL, which is used by GIMP. It allows shell expansion when a pathname in a constructed command line is not escaped or filtered, due to the use of the system library function for execution of the ImageMagick convert fallback in magick-load. This can be exploited by a remote attacker to execute arbitrary commands on the target system by passing special data to the application.
Recommendations For GEGL versions prior to 0.4.34, update to version 0.4.34 or later to resolve the issue. For GIMP versions prior to 2.10.30, update to version 2.10.30 or later to resolve the issue. As a temporary workaround, consider disabling the magick-load feature in GEGL until a patch is available. Restrict access to the load cache function to minimize the risk of exploitation.

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

ALSA-2022:0177
ALT-PU-2021-3626
ALT-PU-2021-3627
ALT-PU-2022-1422
ALT-PU-2022-1423
ALT-PU-2022-1870
ALT-PU-2022-1871
BDU:2022-02388
CESA-2022_0162
CESA-2022_0177
CVE-2021-45463
DLA-4341-1
MGASA-2022-0003
OESA-2022-1488
OPENSUSE-SU-2021:4209-1
OPENSUSE-SU-2021:4210-1
OPENSUSE-SU-2021_4209-1
OPENSUSE-SU-2021_4210-1
OPENSUSE-SU-2024:11788-1
RHSA-2022:0162
RHSA-2022:0177
RHSA-2022:0178
RHSA-2022:0184
RHSA-2022_0162
RHSA-2022_0177
RLSA-2022:0177
SUSE-SU-2021:4193-1
SUSE-SU-2021:4209-1
SUSE-SU-2021:4210-1
SUSE-SU-2021_4193-1
SUSE-SU-2021_4209-1
USN-5251-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Debian
Gegl
Gimp
Imagemagick
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu