Oracle Linux Security Advisory ELSA-2025-22866 http://linux.oracle.com/errata/ELSA-2025-22866.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: gimp-2.8.22-1.0.5.el7.x86_64.rpm gimp-devel-2.8.22-1.0.5.el7.i686.rpm gimp-devel-2.8.22-1.0.5.el7.x86_64.rpm gimp-devel-tools-2.8.22-1.0.5.el7.x86_64.rpm gimp-libs-2.8.22-1.0.5.el7.i686.rpm gimp-libs-2.8.22-1.0.5.el7.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates/gimp-2.8.22-1.0.5.el7.src.rpm Related CVEs: CVE-2025-10922 CVE-2025-10934 Description of changes: [2:2.22-1.0.5] - Fixes CVE-2025-10922 and CVE-2025-10934 [Orabug: 38739185] [2:2.8.22-1.0.3] - Fixes CVE-2025-5473 (GIMP ICO File Parsing Integer Overflow) [Orabug: 38110877] - Fixes CVE-2025-48797 (Multiple heap buffer overflows in TGA parser) - Fixes CVE-2025-48798 (Multiple use after free in XCF parser) _______________________________________________ El-errata mailing list [email protected] https://oss.oracle.com/mailman/listinfo/el-errata
