An update is available for gimp.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo.
Security Fix(es):
gimp: dds buffer overflow RCE (CVE-2023-44441)
gimp: PSD buffer overflow RCE (CVE-2023-44442)
gimp: psp integer overflow RCE (CVE-2023-44443)
gimp: psp off-by-one RCE (CVE-2023-44444)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
rocky | 9 | ppc64le | gimp | < 2.99.8-4.el9_3 | gimp-2:2.99.8-4.el9_3.ppc64le.rpm |
rocky | 9 | x86_64 | gimp | < 2.99.8-4.el9_3 | gimp-2:2.99.8-4.el9_3.x86_64.rpm |
rocky | 9 | ppc64le | gimp-debuginfo | < 2.99.8-4.el9_3 | gimp-debuginfo-2:2.99.8-4.el9_3.ppc64le.rpm |
rocky | 9 | x86_64 | gimp-debuginfo | < 2.99.8-4.el9_3 | gimp-debuginfo-2:2.99.8-4.el9_3.x86_64.rpm |
rocky | 9 | ppc64le | gimp-debugsource | < 2.99.8-4.el9_3 | gimp-debugsource-2:2.99.8-4.el9_3.ppc64le.rpm |
rocky | 9 | x86_64 | gimp-debugsource | < 2.99.8-4.el9_3 | gimp-debugsource-2:2.99.8-4.el9_3.x86_64.rpm |
rocky | 9 | i686 | gimp-libs | < 2.99.8-4.el9_3 | gimp-libs-2:2.99.8-4.el9_3.i686.rpm |
rocky | 9 | ppc64le | gimp-libs | < 2.99.8-4.el9_3 | gimp-libs-2:2.99.8-4.el9_3.ppc64le.rpm |
rocky | 9 | x86_64 | gimp-libs | < 2.99.8-4.el9_3 | gimp-libs-2:2.99.8-4.el9_3.x86_64.rpm |
rocky | 9 | ppc64le | gimp-libs-debuginfo | < 2.99.8-4.el9_3 | gimp-libs-debuginfo-2:2.99.8-4.el9_3.ppc64le.rpm |