Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 620
Alerts This Week
Warning Icon 1 620

Oracle Linux 7 ELSA-2025-9501 Important: gimp buffer overflow fixes

oracle
Calendar Grey July 3, 2025
Oracle Linux Logo Esm H88
Examine vital enhancements for GIMP on Oracle Linux, focusing on numerous security vulnerabilities. Crucial for maintaining system reliability.
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Summary

[2:2.8.22-1.0.3] - Fixes CVE-2025-5473 (GIMP ICO File Parsing Integer Overflow) [Orabug: 38110877] - Fixes CVE-2025-48797 (Multiple heap buffer overflows in TGA parser) - Fixes CVE-2025-48798 (Multiple use after free in XCF parser)

SRPMs

http://oss.oracle.com/ol7/SRPMS-updates/gimp-2.8.22-1.0.3.el7.src.rpm

x86_64

gimp-2.8.22-1.0.3.el7.x86_64.rpm gimp-devel-2.8.22-1.0.3.el7.i686.rpm gimp-devel-2.8.22-1.0.3.el7.x86_64.rpm gimp-devel-tools-2.8.22-1.0.3.el7.x86_64.rpm gimp-libs-2.8.22-1.0.3.el7.i686.rpm gimp-libs-2.8.22-1.0.3.el7.x86_64.rpm

aarch64

Severity
important
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2025-5473 CVE-2025-48797 CVE-2025-48798

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.