Security update for gimp SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:02164-1 Final 1 1 2025-06-30T07:13:29Z current 2025-06-30T07:13:29Z 2025-06-30T07:13:29Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for gimp This update for gimp fixes the following issues: - CVE-2025-48797: Fixed two buffer over-reads and one heap-based buffer overflow in its TGA parser (bsc#1243711). - CVE-2025-48798: Fixed two use-after-free bugs and one double free bug in its XCF parser (bsc#1243712). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2025-2164,SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-2164,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2164,SUSE-SLE-Product-WE-15-SP6-2025-2164,SUSE-SLE-Product-WE-15-SP7-2025-2164,openSUSE-SLE-15.6-2025-2164 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202502164-1/ Link for SUSE-SU-2025:02164-1 https://lists.suse.com/pipermail/sle-updates/2025-June/040546.html E-Mail link for SUSE-SU-2025:02164-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1243711 SUSE Bug 1243711 https://bugzilla.suse.com/1243712 SUSE Bug 1243712 https://www.suse.com/security/cve/CVE-2025-48797/ SUSE CVE CVE-2025-48797 page https://www.suse.com/security/cve/CVE-2025-48798/ SUSE CVE CVE-2025-48798 page SUSE Linux Enterprise Module for Package Hub 15 SP6 SUSE Linux Enterprise Module for Package Hub 15 SP7 SUSE Linux Enterprise Workstation Extension 15 SP6 SUSE Linux Enterprise Workstation Extension 15 SP7 openSUSE Leap 15.6 gimp-2.10.30-150400.3.20.1 gimp-devel-2.10.30-150400.3.20.1 gimp-lang-2.10.30-150400.3.20.1 gimp-plugin-aa-2.10.30-150400.3.20.1 libgimp-2_0-0-2.10.30-150400.3.20.1 libgimp-2_0-0-32bit-2.10.30-150400.3.20.1 libgimp-2_0-0-64bit-2.10.30-150400.3.20.1 libgimpui-2_0-0-2.10.30-150400.3.20.1 libgimpui-2_0-0-32bit-2.10.30-150400.3.20.1 libgimpui-2_0-0-64bit-2.10.30-150400.3.20.1 gimp-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 gimp-devel-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 gimp-lang-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 gimp-plugin-aa-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libgimp-2_0-0-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libgimpui-2_0-0-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 gimp-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 gimp-devel-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 gimp-lang-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 gimp-plugin-aa-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libgimp-2_0-0-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libgimpui-2_0-0-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 gimp-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP6 gimp-devel-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP6 gimp-lang-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP6 libgimp-2_0-0-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP6 libgimpui-2_0-0-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP6 gimp-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP7 gimp-devel-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP7 gimp-lang-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP7 libgimp-2_0-0-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP7 libgimpui-2_0-0-2.10.30-150400.3.20.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP7 gimp-2.10.30-150400.3.20.1 as a component of openSUSE Leap 15.6 gimp-devel-2.10.30-150400.3.20.1 as a component of openSUSE Leap 15.6 gimp-lang-2.10.30-150400.3.20.1 as a component of openSUSE Leap 15.6 gimp-plugin-aa-2.10.30-150400.3.20.1 as a component of openSUSE Leap 15.6 libgimp-2_0-0-2.10.30-150400.3.20.1 as a component of openSUSE Leap 15.6 libgimp-2_0-0-32bit-2.10.30-150400.3.20.1 as a component of openSUSE Leap 15.6 libgimpui-2_0-0-2.10.30-150400.3.20.1 as a component of openSUSE Leap 15.6 libgimpui-2_0-0-32bit-2.10.30-150400.3.20.1 as a component of openSUSE Leap 15.6 A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing a heap buffer overflow. CVE-2025-48797 SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-devel-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-lang-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-plugin-aa-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgimp-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgimpui-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-devel-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-lang-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-plugin-aa-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:libgimp-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:libgimpui-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP6:gimp-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP6:gimp-devel-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP6:gimp-lang-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP6:libgimp-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP6:libgimpui-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP7:gimp-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP7:gimp-devel-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP7:gimp-lang-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP7:libgimp-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP7:libgimpui-2_0-0-2.10.30-150400.3.20.1 openSUSE Leap 15.6:gimp-2.10.30-150400.3.20.1 openSUSE Leap 15.6:gimp-devel-2.10.30-150400.3.20.1 openSUSE Leap 15.6:gimp-lang-2.10.30-150400.3.20.1 openSUSE Leap 15.6:gimp-plugin-aa-2.10.30-150400.3.20.1 openSUSE Leap 15.6:libgimp-2_0-0-2.10.30-150400.3.20.1 openSUSE Leap 15.6:libgimp-2_0-0-32bit-2.10.30-150400.3.20.1 openSUSE Leap 15.6:libgimpui-2_0-0-2.10.30-150400.3.20.1 openSUSE Leap 15.6:libgimpui-2_0-0-32bit-2.10.30-150400.3.20.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502164-1/ https://www.suse.com/security/cve/CVE-2025-48797.html CVE-2025-48797 https://bugzilla.suse.com/1243711 SUSE Bug 1243711 A flaw was found in GIMP when processing XCF image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing use-after-free issues. CVE-2025-48798 SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-devel-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-lang-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-plugin-aa-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgimp-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libgimpui-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-devel-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-lang-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-plugin-aa-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:libgimp-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:libgimpui-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP6:gimp-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP6:gimp-devel-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP6:gimp-lang-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP6:libgimp-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP6:libgimpui-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP7:gimp-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP7:gimp-devel-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP7:gimp-lang-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP7:libgimp-2_0-0-2.10.30-150400.3.20.1 SUSE Linux Enterprise Workstation Extension 15 SP7:libgimpui-2_0-0-2.10.30-150400.3.20.1 openSUSE Leap 15.6:gimp-2.10.30-150400.3.20.1 openSUSE Leap 15.6:gimp-devel-2.10.30-150400.3.20.1 openSUSE Leap 15.6:gimp-lang-2.10.30-150400.3.20.1 openSUSE Leap 15.6:gimp-plugin-aa-2.10.30-150400.3.20.1 openSUSE Leap 15.6:libgimp-2_0-0-2.10.30-150400.3.20.1 openSUSE Leap 15.6:libgimp-2_0-0-32bit-2.10.30-150400.3.20.1 openSUSE Leap 15.6:libgimpui-2_0-0-2.10.30-150400.3.20.1 openSUSE Leap 15.6:libgimpui-2_0-0-32bit-2.10.30-150400.3.20.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502164-1/ https://www.suse.com/security/cve/CVE-2025-48798.html CVE-2025-48798 https://bugzilla.suse.com/1243712 SUSE Bug 1243712