ALSA-2026:16484

The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo.

Security Fix(es):

• gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)
• gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)
• gimp: GIMP: Remote Code Execution via ANI File Parsing Integer Overflow (CVE-2026-4151)
• gimp: GIMP: Remote Code Execution via malicious JP2 file parsing (CVE-2026-4152)
• GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)
• gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.