[Apollo] Advisories Statistics light light Login

RLSA-2025:22417

Security Mirrored from RHSA-2025:22417
Issued at: 2025-12-02
Updated at: 2025-12-07

Synopsis

Important: gimp:2.8 security update



Description

The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo.

Security Fix(es):

* gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10922)

* gimp: GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2025-10920)

* gimp: GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability (CVE-2025-10923)

* gimp: GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10921)

* gimp: GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10925)

* gimp: GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability (CVE-2025-10924)

* gimp: GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10934)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2407188 2407191 2407192 2407194 2407199 2407200 2407233

CVEs

CVE-2025-10920 CVE-2025-10921 CVE-2025-10922 CVE-2025-10923 CVE-2025-10924 CVE-2025-10925 CVE-2025-10934

Affected packages

Rocky Linux 8 x86_64 - AppStream

gimp-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.src.rpm gimp-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.src.rpm gimp-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.src.rpm gimp-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.x86_64.rpm gimp-debuginfo-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.x86_64.rpm gimp-debugsource-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.x86_64.rpm gimp-devel-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.x86_64.rpm gimp-devel-tools-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.x86_64.rpm gimp-devel-tools-debuginfo-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.x86_64.rpm gimp-libs-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.x86_64.rpm gimp-libs-debuginfo-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.x86_64.rpm pygobject2-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.src.rpm pygobject2-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.x86_64.rpm pygobject2-codegen-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.x86_64.rpm pygobject2-debuginfo-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.x86_64.rpm pygobject2-debugsource-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.x86_64.rpm pygobject2-devel-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.x86_64.rpm pygobject2-doc-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.x86_64.rpm pygtk2-0:2.24.0-25.module+el8.9.0+1723+9bc93544.src.rpm pygtk2-0:2.24.0-25.module+el8.9.0+1723+9bc93544.x86_64.rpm pygtk2-codegen-0:2.24.0-25.module+el8.9.0+1723+9bc93544.x86_64.rpm pygtk2-debuginfo-0:2.24.0-25.module+el8.9.0+1723+9bc93544.x86_64.rpm pygtk2-debugsource-0:2.24.0-25.module+el8.9.0+1723+9bc93544.x86_64.rpm pygtk2-devel-0:2.24.0-25.module+el8.9.0+1723+9bc93544.x86_64.rpm pygtk2-doc-0:2.24.0-25.module+el8.9.0+1723+9bc93544.noarch.rpm python2-cairo-0:1.16.3-7.module+el8.10.0+1927+52edb5a0.x86_64.rpm python2-cairo-debuginfo-0:1.16.3-7.module+el8.10.0+1927+52edb5a0.x86_64.rpm python2-cairo-devel-0:1.16.3-7.module+el8.10.0+1927+52edb5a0.x86_64.rpm python2-pycairo-0:1.16.3-7.module+el8.10.0+1927+52edb5a0.src.rpm python2-pycairo-debugsource-0:1.16.3-7.module+el8.10.0+1927+52edb5a0.x86_64.rpm gimp-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.x86_64.rpm gimp-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.x86_64.rpm gimp-debuginfo-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.x86_64.rpm gimp-debuginfo-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.x86_64.rpm gimp-debugsource-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.x86_64.rpm gimp-debugsource-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.x86_64.rpm gimp-devel-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.x86_64.rpm gimp-devel-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.x86_64.rpm gimp-devel-tools-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.x86_64.rpm gimp-devel-tools-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.x86_64.rpm gimp-devel-tools-debuginfo-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.x86_64.rpm gimp-devel-tools-debuginfo-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.x86_64.rpm gimp-libs-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.x86_64.rpm gimp-libs-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.x86_64.rpm gimp-libs-debuginfo-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.x86_64.rpm gimp-libs-debuginfo-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.x86_64.rpm

Rocky Linux 8 aarch64 - AppStream

gimp-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.src.rpm gimp-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.src.rpm gimp-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.aarch64.rpm gimp-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.src.rpm gimp-debuginfo-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.aarch64.rpm gimp-debugsource-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.aarch64.rpm gimp-devel-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.aarch64.rpm gimp-devel-tools-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.aarch64.rpm gimp-devel-tools-debuginfo-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.aarch64.rpm gimp-libs-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.aarch64.rpm gimp-libs-debuginfo-2:2.8.22-26.module+el8.10.0+40033+6fd27379.3.aarch64.rpm pygobject2-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.aarch64.rpm pygobject2-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.src.rpm pygobject2-codegen-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.aarch64.rpm pygobject2-debuginfo-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.aarch64.rpm pygobject2-debugsource-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.aarch64.rpm pygobject2-devel-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.aarch64.rpm pygobject2-doc-0:2.28.7-5.module+el8.10.0+1927+52edb5a0.aarch64.rpm pygtk2-0:2.24.0-25.module+el8.9.0+1723+9bc93544.aarch64.rpm pygtk2-0:2.24.0-25.module+el8.9.0+1723+9bc93544.src.rpm pygtk2-codegen-0:2.24.0-25.module+el8.9.0+1723+9bc93544.aarch64.rpm pygtk2-debuginfo-0:2.24.0-25.module+el8.9.0+1723+9bc93544.aarch64.rpm pygtk2-debugsource-0:2.24.0-25.module+el8.9.0+1723+9bc93544.aarch64.rpm pygtk2-devel-0:2.24.0-25.module+el8.9.0+1723+9bc93544.aarch64.rpm pygtk2-doc-0:2.24.0-25.module+el8.9.0+1723+9bc93544.noarch.rpm python2-cairo-0:1.16.3-7.module+el8.10.0+1927+52edb5a0.aarch64.rpm python2-cairo-debuginfo-0:1.16.3-7.module+el8.10.0+1927+52edb5a0.aarch64.rpm python2-cairo-devel-0:1.16.3-7.module+el8.10.0+1927+52edb5a0.aarch64.rpm python2-pycairo-0:1.16.3-7.module+el8.10.0+1927+52edb5a0.src.rpm python2-pycairo-debugsource-0:1.16.3-7.module+el8.10.0+1927+52edb5a0.aarch64.rpm gimp-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.aarch64.rpm gimp-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.aarch64.rpm gimp-debuginfo-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.aarch64.rpm gimp-debuginfo-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.aarch64.rpm gimp-debugsource-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.aarch64.rpm gimp-debugsource-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.aarch64.rpm gimp-devel-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.aarch64.rpm gimp-devel-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.aarch64.rpm gimp-devel-tools-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.aarch64.rpm gimp-devel-tools-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.aarch64.rpm gimp-devel-tools-debuginfo-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.aarch64.rpm gimp-devel-tools-debuginfo-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.aarch64.rpm gimp-libs-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.aarch64.rpm gimp-libs-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.aarch64.rpm gimp-libs-debuginfo-2:2.8.22-26.module+el8.10.0+1927+52edb5a0.aarch64.rpm gimp-libs-debuginfo-2:2.8.22-26.module+el8.10.0+1998+a08ccc48.2.aarch64.rpm