Description:
The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo.
Security Fix(es):
* gimp: GIMP: Remote Code Execution via PNM file parsing integer overflow (CVE-2025-14422)
* gimp: GIMP: Remote Code Execution via JP2 file parsing heap-based buffer overflow (CVE-2025-14425)
* gimp: GIMP: Remote Code Execution via XCF File Parsing Use-After-Free (CVE-2025-14424)
* gimp: GIMP: Remote Code Execution via stack-based buffer overflow in LBM file parsing (CVE-2025-14423)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
gimp-libs-3.0.4-1.el9_7.2.aarch64.rpm |
56d4bed248aa36c1d3141b12d153ae525ad05852c550cd6b4dfbda5b89831b35 |
| aarch64 |
gimp-3.0.4-1.el9_7.2.aarch64.rpm |
eb06ee57b63cab2de6a78e30f2fdcf43b2da4b38818091b5d73dc6cf2360e133 |
| i686 |
gimp-libs-3.0.4-1.el9_7.2.i686.rpm |
38f81d55511e260dd6a7bb58e54dc7c50b582a841a9d61e819fac31128720e88 |
| ppc64le |
gimp-libs-3.0.4-1.el9_7.2.ppc64le.rpm |
4c534656e344d9c4e0960e3c8d894c16b96e06350dedc8071b7c3db32c2e32b3 |
| ppc64le |
gimp-3.0.4-1.el9_7.2.ppc64le.rpm |
8ced598d781d09de7daeb182163e663869d11bb8eb0ed2ea7615eadf98515417 |
| x86_64 |
gimp-libs-3.0.4-1.el9_7.2.x86_64.rpm |
7ce47328e49795aa6e0fb1cb1ec0e32ad4a302b516b30984363442f8ee7ded0f |
| x86_64 |
gimp-3.0.4-1.el9_7.2.x86_64.rpm |
be28c06aebd9fe4a059e806fc7ff74ab149d652a45178959adea301adb552903 |
