[El-errata] ELSA-2025-22866 Important: Oracle Linux 7 gimp security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Sat Dec 20 22:22:55 UTC 2025
Oracle Linux Security Advisory ELSA-2025-22866
http://linux.oracle.com/errata/ELSA-2025-22866.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
gimp-2.8.22-1.0.5.el7.x86_64.rpm
gimp-devel-2.8.22-1.0.5.el7.i686.rpm
gimp-devel-2.8.22-1.0.5.el7.x86_64.rpm
gimp-devel-tools-2.8.22-1.0.5.el7.x86_64.rpm
gimp-libs-2.8.22-1.0.5.el7.i686.rpm
gimp-libs-2.8.22-1.0.5.el7.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/gimp-2.8.22-1.0.5.el7.src.rpm
Related CVEs:
CVE-2025-10922
CVE-2025-10934
Description of changes:
[2:2.22-1.0.5]
- Fixes CVE-2025-10922 and CVE-2025-10934 [Orabug: 38739185]
[2:2.8.22-1.0.3]
- Fixes CVE-2025-5473 (GIMP ICO File Parsing Integer Overflow) [Orabug: 38110877]
- Fixes CVE-2025-48797 (Multiple heap buffer overflows in TGA parser)
- Fixes CVE-2025-48798 (Multiple use after free in XCF parser)
More information about the El-errata
mailing list