Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package gimp for openSUSE:Factory checked in at 2026-01-08 15:25:48 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/gimp (Old) and /work/SRC/openSUSE:Factory/.gimp.new.1928 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "gimp" Thu Jan 8 15:25:48 2026 rev:161 rq:1325843 version:3.0.6 Changes: -------- --- /work/SRC/openSUSE:Factory/gimp/gimp.changes 2026-01-06 17:41:54.999076395 +0100 +++ /work/SRC/openSUSE:Factory/.gimp.new.1928/gimp.changes 2026-01-08 15:26:27.658644388 +0100 @@ -1,0 +2,6 @@ +Wed Jan 7 06:06:45 UTC 2026 - Xiaoguang Wang <[email protected]> + +- Add gimp-CVE-2025-15059.patch: vulnerability in file-psp + (CVE-2025-15059, ZDI-CAN-28232, bsc#1255766). + +------------------------------------------------------------------- New: ---- gimp-CVE-2025-15059.patch ----------(New B)---------- New: - Add gimp-CVE-2025-15059.patch: vulnerability in file-psp (CVE-2025-15059, ZDI-CAN-28232, bsc#1255766). ----------(New E)---------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ gimp.spec ++++++ --- /var/tmp/diff_new_pack.WJeUwV/_old 2026-01-08 15:26:30.950780730 +0100 +++ /var/tmp/diff_new_pack.WJeUwV/_new 2026-01-08 15:26:30.954780895 +0100 @@ -100,6 +100,8 @@ Patch1: gimp-2.99.19-cm-system-monitor-profile-by-default.patch Patch2: gimp-2.99.19-external-help-browser.patch Patch3: gimp-2.99.19-no-phone-home-default.patch +# PATCH-FIX-UPSTREAM gimp-CVE-2025-15059.patch CVE-2025-15059 bsc#1255766 [email protected] -- vulnerability in file-psp +Patch4: gimp-CVE-2025-15059.patch %if %{with debug_in_build_gimp} BuildRequires: gdb %endif ++++++ gimp-CVE-2025-15059.patch ++++++ >From 03575ac8cbb0ef3103b0a15d6598475088dcc15e Mon Sep 17 00:00:00 2001 From: Jacob Boerema <[email protected]> Date: Sat, 20 Dec 2025 10:10:48 -0500 Subject: [PATCH] plug-ins: fix #15284 ZDI-CAN-28232 vulnerability in file-psp We were not checking whether channel types were valid for grayscale images. Using a blue color channel caused an invalid computation of the offset which could cause us to access an invalid memory location. Now we separate RGB from non-RGB images when checking which channels are valid, and if not return with an error. --- plug-ins/common/file-psp.c | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/plug-ins/common/file-psp.c b/plug-ins/common/file-psp.c index f00251c573..3f6970561f 100644 --- a/plug-ins/common/file-psp.c +++ b/plug-ins/common/file-psp.c @@ -2171,11 +2171,12 @@ read_layer_block (FILE *f, } else { - if (channel_type > PSP_CHANNEL_BLUE) + if ((ia->base_type == GIMP_RGB && channel_type > PSP_CHANNEL_BLUE) || + (ia->base_type != GIMP_RGB && channel_type >= PSP_CHANNEL_RED)) { g_set_error (error, G_FILE_ERROR, G_FILE_ERROR_FAILED, - _("Invalid channel type %d in channel information chunk"), - channel_type); + _("Invalid channel type %d in channel information chunk"), + channel_type); return NULL; } -- 2.51.0
