A flaw was found in GIMP. This vulnerability, a heap buffer over-read in the icns_slurp() function, occurs when processing specially crafted ICNS image files. An attacker could provide a malicious ICNS file, potentially leading to application crashes or information disclosure on systems that process such files.
Exploitability
AV:LAC:LPR:LUI:RScope
S:UImpact
C:NI:NA:H5/CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:HMemory Safety