[El-errata] ELSA-2025-9501 Important: Oracle Linux 7 gimp security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Jul 3 20:54:24 UTC 2025
Oracle Linux Security Advisory ELSA-2025-9501
http://linux.oracle.com/errata/ELSA-2025-9501.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
gimp-2.8.22-1.0.3.el7.x86_64.rpm
gimp-devel-2.8.22-1.0.3.el7.i686.rpm
gimp-devel-2.8.22-1.0.3.el7.x86_64.rpm
gimp-devel-tools-2.8.22-1.0.3.el7.x86_64.rpm
gimp-libs-2.8.22-1.0.3.el7.i686.rpm
gimp-libs-2.8.22-1.0.3.el7.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/gimp-2.8.22-1.0.3.el7.src.rpm
Related CVEs:
CVE-2025-5473
CVE-2025-48797
CVE-2025-48798
Description of changes:
[2:2.8.22-1.0.3]
- Fixes CVE-2025-5473 (GIMP ICO File Parsing Integer Overflow) [Orabug: 38110877]
- Fixes CVE-2025-48797 (Multiple heap buffer overflows in TGA parser)
- Fixes CVE-2025-48798 (Multiple use after free in XCF parser)
More information about the El-errata
mailing list