CVE-2026-40916

Name of the Vulnerable Software and Affected Versions GIMP (affected versions not specified)

Description A stack buffer overflow in the TIM image loader's 4BPP decoding path allows a local user to cause a Denial of Service (DoS). This occurs when the application opens a specially crafted TIM image file, leading to a crash due to an unconditional overflow when writing to a variable-length array.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.