Security Advisory

CVE-2026-40917

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-15 18:59:09

Last updated 2026-04-28 18:45:50

Assigner redhat

State PUBLISHED

Description

A flaw was found in GIMP. This vulnerability, a heap buffer over-read in the `icns_slurp()` function, occurs when processing specially crafted ICNS image files. An attacker could provide a malicious ICNS file, potentially leading to application crashes or information disclosure on systems that process such files.

← Browse all CVEs View on cve.org ↗