Issued:: 2025-11-24
Updated:: 2025-11-24

RHSA-2025:21968 - Security Advisory

Overview
Updated Packages

Synopsis

Important: gimp security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for gimp is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo.

Security Fix(es):

gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10922)
gimp: GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2025-10920)
gimp: GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability (CVE-2025-10923)
gimp: GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10921)
gimp: GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10925)
gimp: GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability (CVE-2025-10924)
gimp: GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10934)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 9 x86_64
Red Hat Enterprise Linux for Power, little endian 9 ppc64le
Red Hat Enterprise Linux for ARM 64 9 aarch64

Fixes

BZ - 2407188 - CVE-2025-10922 gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
BZ - 2407191 - CVE-2025-10920 gimp: GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
BZ - 2407192 - CVE-2025-10923 gimp: GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability
BZ - 2407194 - CVE-2025-10921 gimp: GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
BZ - 2407199 - CVE-2025-10925 gimp: GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
BZ - 2407200 - CVE-2025-10924 gimp: GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability
BZ - 2407233 - CVE-2025-10934 gimp: GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVEs

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 9

SRPM
gimp-3.0.4-1.el9_7.1.src.rpm	SHA-256: b14e348ddc3d0313ec85b2b5ae313b81e795585f72017d94ee3a0b4b920aebc4
x86_64
gimp-3.0.4-1.el9_7.1.x86_64.rpm	SHA-256: be6ed7c60ab36230d9f68eb8dbdaacef249373198f292a0aa283771122024f3c
gimp-debuginfo-3.0.4-1.el9_7.1.i686.rpm	SHA-256: a8dda4289808f7693dcdb796e92b5a420e0c6207fb60ee3902edbcf6309dba48
gimp-debuginfo-3.0.4-1.el9_7.1.x86_64.rpm	SHA-256: ad453e0b03991e36f765e43223949e083a07cfb74c9de7cd29d861e0b6431b11
gimp-debugsource-3.0.4-1.el9_7.1.i686.rpm	SHA-256: 01fc808337cb0277c9ba982c83e5a77a1d2743df0b227a054119647d3f1b0ffd
gimp-debugsource-3.0.4-1.el9_7.1.x86_64.rpm	SHA-256: 7c3e254a551ac26dba1ad1abd17c5d2e621eb06d76c3f971a57ccdfb6a3ff486
gimp-devel-tools-debuginfo-3.0.4-1.el9_7.1.i686.rpm	SHA-256: 3f6b8d469dfb364f1e4f1ab5215b1eecbd9a4f878cef862e0919fe3635b3e4ae
gimp-devel-tools-debuginfo-3.0.4-1.el9_7.1.x86_64.rpm	SHA-256: 70d9e65c18b91781c029935285770c9b2406f65dc94bd3868999912a3bea5c75
gimp-libs-3.0.4-1.el9_7.1.i686.rpm	SHA-256: 6ebc6d11c369f24e46732622cda0103539a9a48292e42450408cb561c40fc68f
gimp-libs-3.0.4-1.el9_7.1.x86_64.rpm	SHA-256: 026b9c966a9df07ed6beefe79a7af858fbbda9a9b1254a0f3a3746b00654917c
gimp-libs-debuginfo-3.0.4-1.el9_7.1.i686.rpm	SHA-256: 5e5071d9e2faeac9d8659cd265577ec2265ee88f462ff9803478b06defc2703e
gimp-libs-debuginfo-3.0.4-1.el9_7.1.x86_64.rpm	SHA-256: b428c20cd4afbf07d3a61d325af8b57ccf682e37541b439009d6e2d806401e81

Red Hat Enterprise Linux for Power, little endian 9

SRPM
gimp-3.0.4-1.el9_7.1.src.rpm	SHA-256: b14e348ddc3d0313ec85b2b5ae313b81e795585f72017d94ee3a0b4b920aebc4
ppc64le
gimp-3.0.4-1.el9_7.1.ppc64le.rpm	SHA-256: 78794c04623326a92e27c7b6c3f34cd895e1981219a184f1bf5514e6a88b632c
gimp-debuginfo-3.0.4-1.el9_7.1.ppc64le.rpm	SHA-256: 12691fe21be96664bfb81568c3a6145885561ef4d11bcbf5c984db26fa391c6c
gimp-debugsource-3.0.4-1.el9_7.1.ppc64le.rpm	SHA-256: 7cdc39c3f4a53b63e7cf9cf80fde28a65a10441a20f52e5aeb7ec02b1f4f31ad
gimp-devel-tools-debuginfo-3.0.4-1.el9_7.1.ppc64le.rpm	SHA-256: 620a3a12d88399f4669b0be64202da6f1dbb76a3cfacd3fc9ee74cbf224f3758
gimp-libs-3.0.4-1.el9_7.1.ppc64le.rpm	SHA-256: 8f82214aac3b647a8d4b18640c578d93375697765c55c5b0ad0134ee725bdd33
gimp-libs-debuginfo-3.0.4-1.el9_7.1.ppc64le.rpm	SHA-256: 2fc44de6e6d72230c7bd54103341dece56cf2d5024989dd7908d63228906d04e

Red Hat Enterprise Linux for ARM 64 9

SRPM
gimp-3.0.4-1.el9_7.1.src.rpm	SHA-256: b14e348ddc3d0313ec85b2b5ae313b81e795585f72017d94ee3a0b4b920aebc4
aarch64
gimp-3.0.4-1.el9_7.1.aarch64.rpm	SHA-256: 3b20f6acaf9e3a958eee76d6385060ecf5379c20dbe4e3878a754cd9aa2c4f93
gimp-debuginfo-3.0.4-1.el9_7.1.aarch64.rpm	SHA-256: ce4f3be98c51a0f58f8a8a1be488a8b0698a11caa3ecb1a67d604752a5e34d55
gimp-debugsource-3.0.4-1.el9_7.1.aarch64.rpm	SHA-256: cded2665c45d2e41b84b5ae4a81eedcc47ce35976349d7c4607e7967d95388a4
gimp-devel-tools-debuginfo-3.0.4-1.el9_7.1.aarch64.rpm	SHA-256: c619eea3ff38f91effa7c15ce72925e0aa3c2f4b1b8cd4ca63e86df19f19c3fe
gimp-libs-3.0.4-1.el9_7.1.aarch64.rpm	SHA-256: 172eaa126e635526fabc82ed3fcaa58d96f186e87553c22b113725ef59412793
gimp-libs-debuginfo-3.0.4-1.el9_7.1.aarch64.rpm	SHA-256: 25456f006bbef9419d994286247d994d1c33fd915d901758fc156de711285fb4

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation