[ALSA-2024:0675] Important: gimp security update
Type:
security
Severity:
important
Release date:
2024-02-09
Description:
The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fix(es): * gimp: dds buffer overflow RCE (CVE-2023-44441) * gimp: PSD buffer overflow RCE (CVE-2023-44442) * gimp: psp integer overflow RCE (CVE-2023-44443) * gimp: psp off-by-one RCE (CVE-2023-44444) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 gimp-2.99.8-4.el9_3.aarch64.rpm 7147c9679097124aa4e60a062b80bd93b49118edccd473b2ff4d59af2fbe2079
aarch64 gimp-libs-2.99.8-4.el9_3.aarch64.rpm 808461dbda487a28897a025b2c23465518920c6a6b037ab8d0537b4f0ac0eaee
i686 gimp-libs-2.99.8-4.el9_3.i686.rpm fc3a63c1155b16a34e3890a8e737e28ee079a31b0ac51fa188eab446e1507671
ppc64le gimp-2.99.8-4.el9_3.ppc64le.rpm 54220c93b377e4bf2cb4c7db20aa7d97c109476ff9d7cb315e6a08dc0d612279
ppc64le gimp-libs-2.99.8-4.el9_3.ppc64le.rpm 6983b693b52aa85c949340199639b878cddcd402db0d79cc1918294826caaf91
s390x gimp-libs-2.99.8-4.el9_3.s390x.rpm 691ab03de7ee0314fc535b3ec7f0ccac439f5e6d9e2a7407781f7597ddb763bd
s390x gimp-2.99.8-4.el9_3.s390x.rpm d417ffd61711e32b2dffc479a640ff3046e7b8cdd4b2fc25a0f257214b3be13b
x86_64 gimp-2.99.8-4.el9_3.x86_64.rpm 3ac9c3aec661cd7df7b9d312c2f1d94bf1a8ce64249b07711135050f12554c44
x86_64 gimp-libs-2.99.8-4.el9_3.x86_64.rpm 9b9b3cacf0405f834cd7751df939da1a0f0e0a106694263136e39a02fefd6170
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.