CVE-2026-2239: Improper Null Termination in Red Hat Red Hat Enterprise Linux 7
A flaw was found in GIMP. Heap-buffer-overflow vulnerability exists in the fread_pascal_string function when processing a specially crafted PSD (Photoshop Document) file. This occurs because the buffer allocated for a Pascal string is not properly null-terminated, leading to an out-of-bounds read when strlen() is subsequently called. Successfully exploiting this vulnerability can cause the application to crash, resulting in an application level Denial of Service.
AI Analysis
Technical Summary
This vulnerability involves a heap-buffer-overflow in the fread_pascal_string function of GIMP on Red Hat Enterprise Linux 7. The issue occurs because the buffer allocated for a Pascal string is not properly null-terminated when processing a crafted Photoshop Document (PSD) file. Subsequent calls to strlen() on this improperly terminated buffer cause out-of-bounds reads, potentially crashing the application and causing denial of service at the application level. The CVSS 3.1 score is 2.8, reflecting low severity with local attack vector, low complexity, requiring privileges and user interaction, and impacting availability only.
Potential Impact
Successful exploitation results in an application-level denial of service due to a crash caused by out-of-bounds read. There is no impact on confidentiality or integrity. No known exploits exist in the wild as per current data.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-2239 for current remediation guidance. Until an official fix is available, avoid opening untrusted PSD files with GIMP on affected systems to prevent triggering the vulnerability.
CVE-2026-2239: Improper Null Termination in Red Hat Red Hat Enterprise Linux 7
Description
A flaw was found in GIMP. Heap-buffer-overflow vulnerability exists in the fread_pascal_string function when processing a specially crafted PSD (Photoshop Document) file. This occurs because the buffer allocated for a Pascal string is not properly null-terminated, leading to an out-of-bounds read when strlen() is subsequently called. Successfully exploiting this vulnerability can cause the application to crash, resulting in an application level Denial of Service.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves a heap-buffer-overflow in the fread_pascal_string function of GIMP on Red Hat Enterprise Linux 7. The issue occurs because the buffer allocated for a Pascal string is not properly null-terminated when processing a crafted Photoshop Document (PSD) file. Subsequent calls to strlen() on this improperly terminated buffer cause out-of-bounds reads, potentially crashing the application and causing denial of service at the application level. The CVSS 3.1 score is 2.8, reflecting low severity with local attack vector, low complexity, requiring privileges and user interaction, and impacting availability only.
Potential Impact
Successful exploitation results in an application-level denial of service due to a crash caused by out-of-bounds read. There is no impact on confidentiality or integrity. No known exploits exist in the wild as per current data.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-2239 for current remediation guidance. Until an official fix is available, avoid opening untrusted PSD files with GIMP on affected systems to prevent triggering the vulnerability.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- redhat
- Date Reserved
- 2026-02-09T09:07:05.426Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 69c5a54c3c064ed76fcfc870
Added to database: 3/26/2026, 9:29:48 PM
Last enriched: 4/3/2026, 1:12:05 PM
Last updated: 5/10/2026, 10:53:23 PM
Views: 86
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.