CVE-2026-2272

Name of the Vulnerable Software and Affected Versions GIMP (affected versions not specified)

Description A flaw exists in GIMP related to integer overflow when processing ICO image files. The issue is present in the ico read info and ico read icon functions, where a size calculation for image buffers can result in a 32-bit integer overflow. This allows oversized image headers to bypass security checks. An attacker could provide a crafted ICO file, potentially leading to a buffer overflow and memory corruption, resulting in a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.