[ALSA-2025:9162] Important: gimp security update
Type:
security
Severity:
important
Release date:
2025-06-30
Description:
The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fix(es): * gimp: Multiple use after free in XCF parser (CVE-2025-48798) * gimp: Multiple heap buffer overflows in TGA parser (CVE-2025-48797) * gimp: GIMP ICO File Parsing Integer Overflow (CVE-2025-5473) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 gimp-libs-2.99.8-4.el9_6.2.aarch64.rpm 51c19e0b3a4ecc82d48015a67d92217c5d3f30e666a8d553e5568358fc75269e
aarch64 gimp-2.99.8-4.el9_6.2.aarch64.rpm 7cfd5bcac67f11ce11b1561b96503f6a66d0c14815248aa0dd3b23cd58828249
i686 gimp-libs-2.99.8-4.el9_6.2.i686.rpm cf8763e7512e2119890ed4b23026ff6ca392adf31ea9fa489f33331508decc02
ppc64le gimp-libs-2.99.8-4.el9_6.2.ppc64le.rpm 49009597986130807d4943a72cfa30bc80a82fe2fe11c5fb9f1a9d1083a48274
ppc64le gimp-2.99.8-4.el9_6.2.ppc64le.rpm f437867a4e302492a2764400358436d7e5ec85c550a0015321fa13058aefd3e4
s390x gimp-2.99.8-4.el9_6.2.s390x.rpm 34c8d8a53d3f57cacd5f3f7cf8cdd6d6e41ae7d2b49f40b4595f0e3d455f430a
s390x gimp-libs-2.99.8-4.el9_6.2.s390x.rpm 8e635e093a689b62987e813c4f72375af8edda41aecfe0fc5a8eea4b40becc87
x86_64 gimp-2.99.8-4.el9_6.2.x86_64.rpm 17426bb20b47382dc7827a9f636387ef7da8d1c9afcb6cc2618f55fff4323f2a
x86_64 gimp-libs-2.99.8-4.el9_6.2.x86_64.rpm 58d95817cd42a5cfa47c788c725f25ac1d2a69e10d0d300b4f3bff5900c8557c
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.