1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 5939-1] gimp security update

    From Moritz Muehlenhoff@21:1/5 to All on Fri Jun 6 20:40:01 2025
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-5939-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff
    June 06, 2025 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : gimp
    CVE ID : CVE-2025-2760 CVE-2025-2761 CVE-2025-48797 CVE-2025-48798

    Several vulnerabilities were discovered in GIMP, the GNU Image
    Manipulation Program, which could result in denial of service or
    potentially the execution of arbitrary code if malformed XCF, TGA, DDS,
    FLI or ICO files are opened.

    For the stable distribution (bookworm), these problems have been fixed in version 2.10.34-1+deb12u3.

    We recommend that you upgrade your gimp packages.

    For the detailed security status of gimp please refer to
    its security tracker page at:
    https://security-tracker.debian.org/tracker/gimp

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: [email protected]
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmhDMPAACgkQEMKTtsN8 TjYZog//Y+fBhDHTD+OKgHGvsDGMaXA5chzKvfBg+GPdn2/m3Yx7FBUWW7NS2MNF HhR2pgK6ya/dxMTTpX5fZNdXlzukS8yWInW8wxSCzdxfaHiy/sR03OPu0xwrXUKa 7kGOkQ1bmeIoGwiGIbiTL0f+sn70bV0peul4uQl9pIcdYJUyoSD5JgcjqTKOMb0B 2J43B25K2WTFmnQJUSnMIfzRx2AvnUHjJ0L35z72FkPkV+gdCpzGjPn1mmmaEICP EUEbtUlIQ9RRK+GSKZB9MHUKI3BB095b0XhIFKghz9cM4v18+8eXFzdWeMSOZz5+ 50R7BuIl+hEwPvdLbdCJU6uJPmkbyfaKGyS9N69tk+tms9t4my7IJxmG+8H7aWDM 0S7F9LMlTtn88W9FCZD6YELwJ4g4YBIfJdLQpLix2u5DDupUha6AQSVTBcMDnI3a 4/hFecpwFN4FP1xLKmK19qC7BfwAFVytjYuPyEXD70hpEZXlqNR1sV6Ltq0Xv85o VxusD0JtOxw1GwLaTKk77ToTEsL9zrqUHsuFii3RaF+22joInyo5UUZuf633px1x KJAH8Skd+QgEbl/rOAIIHHvdqCvBKfMbX1TKhnFvNtgmnUiyRbU68AxrBV4M2opL TC81lFn9mjMI7oK6Pql/Zy6iyS80ztmS+ufIxnH0OK4v2DC6rhA=
    =buNF
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)