CVE-2026-2271: Integer Overflow or Wraparound in Red Hat Red Hat Enterprise Linux 6
A flaw was found in GIMP's PSP (Paint Shop Pro) file parser. A remote attacker could exploit an integer overflow vulnerability in the read_creator_block() function by providing a specially crafted PSP image file. This vulnerability occurs when a 32-bit length value from the file is used for memory allocation without proper validation, leading to a heap overflow and an out-of-bounds write. Successful exploitation could result in an application level denial of service.
AI Analysis
Technical Summary
This vulnerability involves an integer overflow or wraparound in the GIMP PSP file parser component of Red Hat Enterprise Linux 6. Specifically, the read_creator_block() function improperly handles a 32-bit length value from a PSP image file, leading to unsafe memory allocation. This results in a heap overflow and out-of-bounds write, which can be exploited by a local attacker providing a crafted PSP file to cause an application-level denial of service. The CVSS 3.1 base score is 3.3, reflecting low severity with local attack vector, low complexity, no privileges required, and user interaction needed.
Potential Impact
Successful exploitation of this vulnerability can cause an application-level denial of service due to heap overflow and out-of-bounds memory writes. There is no indication of confidentiality or integrity impact. The attack requires local access and user interaction, limiting the scope and ease of exploitation.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-2271 for current remediation guidance. No explicit patch or workaround information is provided in the available data. Until a patch is confirmed, avoid processing untrusted PSP image files with the affected GIMP parser to mitigate risk.
CVE-2026-2271: Integer Overflow or Wraparound in Red Hat Red Hat Enterprise Linux 6
Description
A flaw was found in GIMP's PSP (Paint Shop Pro) file parser. A remote attacker could exploit an integer overflow vulnerability in the read_creator_block() function by providing a specially crafted PSP image file. This vulnerability occurs when a 32-bit length value from the file is used for memory allocation without proper validation, leading to a heap overflow and an out-of-bounds write. Successful exploitation could result in an application level denial of service.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves an integer overflow or wraparound in the GIMP PSP file parser component of Red Hat Enterprise Linux 6. Specifically, the read_creator_block() function improperly handles a 32-bit length value from a PSP image file, leading to unsafe memory allocation. This results in a heap overflow and out-of-bounds write, which can be exploited by a local attacker providing a crafted PSP file to cause an application-level denial of service. The CVSS 3.1 base score is 3.3, reflecting low severity with local attack vector, low complexity, no privileges required, and user interaction needed.
Potential Impact
Successful exploitation of this vulnerability can cause an application-level denial of service due to heap overflow and out-of-bounds memory writes. There is no indication of confidentiality or integrity impact. The attack requires local access and user interaction, limiting the scope and ease of exploitation.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-2271 for current remediation guidance. No explicit patch or workaround information is provided in the available data. Until a patch is confirmed, avoid processing untrusted PSP image files with the affected GIMP parser to mitigate risk.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- redhat
- Date Reserved
- 2026-02-10T09:32:16.763Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Vendor Advisory Urls
- [{"url":"https://access.redhat.com/security/cve/CVE-2026-2271","vendor":"Red Hat"}]
Threat ID: 69c5a54c3c064ed76fcfc875
Added to database: 3/26/2026, 9:29:48 PM
Last enriched: 4/22/2026, 6:07:40 AM
Last updated: 5/10/2026, 6:22:44 AM
Views: 68
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.