It was discovered that kitty incorrectly handled certain image data. An attacker able to write to the terminal's input could possibly use this issue to cause kitty to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2026-33633)
It was discovered that kitty incorrectly handled certain graphics commands. An attacker able to write escape sequences to a kitty terminal could possibly use this issue to cause kitty to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2026-33642)
0.41.1-2+deb13u1build0.25.10.10.15.0-1ubuntu0.2+esm10.21.2-1ubuntu0.22.04.1+esm10.32.2-1ubuntu0.4+esm10.45.0-1ubuntu0.1~esm1