A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX image. Successful exploitation could lead to out-of-bounds memory disclosure and a possible application crash, resulting in a Denial of Service (DoS).

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:26168 advisory.

    The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a     large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and     anti-aliasing, and conversions, all with multi-level undo.

    Security Fix(es):

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:25907 advisory.

    The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a     large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and     anti-aliasing, and conversions, all with multi-level undo.

    Security Fix(es):

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * gimp: GIMP: Remote Code Execution via malicious JP2 file parsing (CVE-2026-4152)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:25899 advisory.

    The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a     large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and     anti-aliasing, and conversions, all with multi-level undo.

    Security Fix(es):

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * gimp: GIMP: Remote Code Execution via malicious JP2 file parsing (CVE-2026-4152)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:25901 advisory.

    The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a     large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and     anti-aliasing, and conversions, all with multi-level undo.

    Security Fix(es):

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * gimp: GIMP: Remote Code Execution via malicious JP2 file parsing (CVE-2026-4152)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20554 advisory.

    The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a     large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and     anti-aliasing, and conversions, all with multi-level undo.

    Security Fix(es):

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20553 advisory.

    The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a     large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and     anti-aliasing, and conversions, all with multi-level undo.

    Security Fix(es):

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20691 advisory.

    The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a     large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and     anti-aliasing, and conversions, all with multi-level undo.

    Security Fix(es):

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * gimp: GIMP: Remote Code Execution via malicious JP2 file parsing (CVE-2026-4152)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20552 advisory.

    The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a     large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and     anti-aliasing, and conversions, all with multi-level undo.

    Security Fix(es):

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-712:01 advisory.

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)
      * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)
      * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)
      * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2026:0132 advisory.

    Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities:

    CVE-2026-4150:
    GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows     remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required     to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
    The specific flaw exists within the parsing of PSD files. The issue results from the lack of proper     validation of user-supplied data, which can result in an integer overflow before allocating a buffer. An     attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-     CAN-28807.

    CVE-2026-4153:
    GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability     allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is     required to exploit this vulnerability in that the target must visit a malicious page or open a malicious     file.
    The specific flaw exists within the parsing of PSP files. The issue results from the lack of proper     validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can     leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-28874.

    CVE-2026-4154:
    GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows     remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required     to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
    The specific flaw exists within the parsing of XPM files. The issue results from the lack of proper     validation of user-supplied data, which can result in an integer overflow before allocating a buffer. An     attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-     CAN-28901.

    CVE-2026-4887:
    A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-     one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX     image. Successful exploitation could lead to out-of-bounds memory disclosure and a possible application     crash, resulting in a Denial of Service (DoS).

Tenable has extracted the preceding description block directly from the Alibaba Cloud Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:19362 advisory.

    The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a     large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and     anti-aliasing, and conversions, all with multi-level undo.

    Security Fix(es):

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * gimp: GIMP: Remote Code Execution via ANI File Parsing Integer Overflow (CVE-2026-4151)

    * gimp: GIMP: Remote Code Execution via malicious JP2 file parsing (CVE-2026-4152)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0324 advisory.

    Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:

    CVE-2026-4150:
    GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows     remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required     to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

    The specific flaw exists within the parsing of PSD files. The issue results from the lack of proper     validation of user-supplied data, which can result in an integer overflow before allocating a buffer. An     attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-     CAN-28807.

    CVE-2026-4153:
    GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability     allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is     required to exploit this vulnerability in that the target must visit a malicious page or open a malicious     file.

    The specific flaw exists within the parsing of PSP files. The issue results from the lack of proper     validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can     leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-28874.

    CVE-2026-4154:
    GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows     remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required     to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

    The specific flaw exists within the parsing of XPM files. The issue results from the lack of proper     validation of user-supplied data, which can result in an integer overflow before allocating a buffer. An     attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-     CAN-28901.

    CVE-2026-4887:
    A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-     one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX     image. Successful exploitation could lead to out-of-bounds memory disclosure and a possible application     crash, resulting in a Denial of Service (DoS).

Tenable has extracted the preceding description block directly from the Tencent Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-630:04 advisory.

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)
      * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)
      * gimp: GIMP: Remote Code Execution via ANI File Parsing Integer Overflow (CVE-2026-4151)
      * gimp: GIMP: Remote Code Execution via malicious JP2 file parsing (CVE-2026-4152)
      * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)
      * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:17533 advisory.

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)
      * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)
      * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)
      * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

Tenable has extracted the preceding description block directly from the AlmaLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-17533 advisory.

    - fix CVE-2026-4150
    - fix CVE-2026-4153
    - fix CVE-2026-4154
    - fix CVE-2026-4887
    - fix CVE-2026-0797
    - fix CVE-2026-2044
    - fix CVE-2026-2045
    - fix CVE-2026-2048
    - fix CVE-2025-14422
    - fix CVE-2025-10920
    - fix CVE-2025-10921
    - fix CVE-2025-10922
    - fix CVE-2025-10923
    - fix CVE-2025-10924
    - fix CVE-2025-10925
    - fix CVE-2025-10934
    - fix CVE-2025-5473 (RHEL-95696)
    - fix CVE-2025-48797 (RHEL-93503)
    - fix CVE-2025-48798 (RHEL-93506)
    - fix CVE-2023-44442
    - fix CVE-2023-44444

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:17533 advisory.

    The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a     large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and     anti-aliasing, and conversions, all with multi-level undo.

    Security Fix(es):

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:17533 advisory.

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

Tenable has extracted the preceding description block directly from the RockyLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:16484 advisory.

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * gimp: GIMP: Remote Code Execution via ANI File Parsing Integer Overflow (CVE-2026-4151)

    * gimp: GIMP: Remote Code Execution via malicious JP2 file parsing (CVE-2026-4152)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

Tenable has extracted the preceding description block directly from the RockyLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:16484 advisory.

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)
      * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)
      * gimp: GIMP: Remote Code Execution via ANI File Parsing Integer Overflow (CVE-2026-4151)
      * gimp: GIMP: Remote Code Execution via malicious JP2 file parsing (CVE-2026-4152)
      * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)
      * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

Tenable has extracted the preceding description block directly from the AlmaLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-16484 advisory.

    - fix CVE-2026-4150
    - fix CVE-2026-4151
    - fix CVE-2026-4152
    - fix CVE-2026-4153
    - fix CVE-2026-4154

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:16484 advisory.

    The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a     large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and     anti-aliasing, and conversions, all with multi-level undo.

    Security Fix(es):

    * gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image (CVE-2026-4887)

    * gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow (CVE-2026-4154)

    * gimp: GIMP: Remote Code Execution via ANI File Parsing Integer Overflow (CVE-2026-4151)

    * gimp: GIMP: Remote Code Execution via malicious JP2 file parsing (CVE-2026-4152)

    * GIMP: GIMP: Arbitrary code execution via specially crafted PSD file (CVE-2026-4150)

    * gimp: GIMP: Remote Code Execution via PSP file parsing (CVE-2026-4153)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of gimp installed on the remote host is prior to 2.8.22-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2GIMP-2026-013 advisory.

    A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP's PCX file loader due to an off-     by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX     image. Successful exploitation could lead to out-of-bounds memory disclosure and a possible application     crash, resulting in a Denial of Service (DoS). (CVE-2026-4887)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

  - A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-     one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX     image. Successful exploitation could lead to out-of-bounds memory disclosure and a possible application     crash, resulting in a Denial of Service (DoS). (CVE-2026-4887)

Note that Nessus relies on the presence of the package as reported by the vendor.

ID	Name	Product	Family	Severity
321257	RHEL 7 : gimp (RHSA-2026:26168)	Nessus	Red Hat Local Security Checks	high
321091	RHEL 9 : gimp (RHSA-2026:25907)	Nessus	Red Hat Local Security Checks	high
321090	RHEL 9 : gimp (RHSA-2026:25899)	Nessus	Red Hat Local Security Checks	high
321089	RHEL 9 : gimp (RHSA-2026:25901)	Nessus	Red Hat Local Security Checks	high
316821	RHEL 8 : gimp:2.8 (RHSA-2026:20554)	Nessus	Red Hat Local Security Checks	high
316776	RHEL 8 : gimp:2.8 (RHSA-2026:20553)	Nessus	Red Hat Local Security Checks	high
316755	RHEL 9 : gimp (RHSA-2026:20691)	Nessus	Red Hat Local Security Checks	high
316741	RHEL 8 : gimp:2.8 (RHSA-2026:20552)	Nessus	Red Hat Local Security Checks	high
316656	MiracleLinux 8 : gimp:2.8 (AXSA:2026-712:01)	Nessus	Miracle Linux Local Security Checks	high
316579	Alibaba Cloud Linux 3 : 0132: gimp:2.8 (ALINUX3-SA-2026:0132)	Nessus	Alibaba Cloud Linux Local Security Checks	high
315570	RHEL 9 : gimp (RHSA-2026:19362)	Nessus	Red Hat Local Security Checks	high
315218	TencentOS Server 3: gimp:2.8 (TSSA-2026:0324)	Nessus	Tencent Local Security Checks	high
315176	MiracleLinux 9 : gimp-3.0.4-1.el9_7.5 (AXSA:2026-630:04)	Nessus	Miracle Linux Local Security Checks	high
315075	AlmaLinux 8 : gimp:2.8 (ALSA-2026:17533)	Nessus	Alma Linux Local Security Checks	high
314969	Oracle Linux 8 : gimp:2.8 (ELSA-2026-17533)	Nessus	Oracle Linux Local Security Checks	high
314694	RHEL 8 : gimp:2.8 (RHSA-2026:17533)	Nessus	Red Hat Local Security Checks	high
314683	RockyLinux 8 : gimp:2.8 (RLSA-2026:17533)	Nessus	Rocky Linux Local Security Checks	high
314639	RockyLinux 9 : gimp (RLSA-2026:16484)	Nessus	Rocky Linux Local Security Checks	high
314607	AlmaLinux 9 : gimp (ALSA-2026:16484)	Nessus	Alma Linux Local Security Checks	high
314463	Oracle Linux 9 : gimp (ELSA-2026-16484)	Nessus	Oracle Linux Local Security Checks	high
314364	RHEL 9 : gimp (RHSA-2026:16484)	Nessus	Red Hat Local Security Checks	high
306292	Amazon Linux 2 : gimp, --advisory ALAS2GIMP-2026-013 (ALASGIMP-2026-013)	Nessus	Amazon Linux Local Security Checks	high
303830	Linux Distros Unpatched Vulnerability : CVE-2026-4887	Nessus	Misc.	high

Detections

Analytics

CVE-2026-4887

high

Tenable Plugins

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high

high