CVE-2026-2050Gegl vulnerability

4 documents4 sources
Severity
5.3MEDIUM
No vector
EPSS
No EPSS data
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Debian Gegl
Timeline
Latest updateApr 16

Description

bookworm: resolved (fixed in 1:0.4.42-2+deb12u2) bullseye: resolved (fixed in 1:0.4.26-2+deb11u2) forky: resolved (fixed in 1:0.4.66-1) sid: resolved (fixed in 1:0.4.66-1) trixie: resolved (fixed in 1:0.4.62-2+deb13u2)

Affected Packages1 packages

debiandebian/gegl< gegl 1:0.4.42-2+deb12u2 (bookworm)

🔴Vulnerability Details

2
VulDB
GIMP HDR File Parser heap-based overflow2026-04-16
OSV
CVE-2026-2050: [ZDI-CAN-28266: New Vulnerability Report at rgbe2026-02-17

📋Vendor Advisories

1
Debian
CVE-2026-2050: gegl2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-2050 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-2050 — Debian Gegl vulnerability | cvebase