Stay Connected:

ELSA-2026-1590

ELSA-2026-1590 - gimp security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2026-02-24

Description


[2.8.22-1.0.5]
- Fixes CVE-2025-14422 [Orabug: 38904303]

[2:2.22-1.0.5]
- Fixes CVE-2025-10922 and CVE-2025-10934 [Orabug: 38739185]

[2:2.8.22-1.0.3]
- Fixes CVE-2025-5473 (GIMP ICO File Parsing Integer Overflow) [Orabug: 38110877]
- Fixes CVE-2025-48797 (Multiple heap buffer overflows in TGA parser)
- Fixes CVE-2025-48798 (Multiple use after free in XCF parser)


Related CVEs


CVE-2025-14422

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (x86_64) gimp-2.8.22-1.0.7.el7.src.rpme858ebafa0845551dcff85905c9d409d55c29ae6324ee8980bf3a6b6e64a40f9-ol7_x86_64_latest_ELS
gimp-2.8.22-1.0.7.el7.x86_64.rpm52f150f4ce460e893f80c3850dbd58e6a8173f2baffc950125f5221b17bf6ad4-ol7_x86_64_latest_ELS
gimp-devel-2.8.22-1.0.7.el7.i686.rpmc074448ad6ccade9934d965e73bed71ace51cb9f35a2044b97bbdc59deba682e-ol7_x86_64_latest_ELS
gimp-devel-2.8.22-1.0.7.el7.x86_64.rpm52fdebf1d36efecd66c1fde7e0af085b5a9b7aa1973740fd03f08b1856552f8a-ol7_x86_64_latest_ELS
gimp-devel-tools-2.8.22-1.0.7.el7.x86_64.rpm1483ef4d8c050a84e4787ba44679f12cfc3efbe7b62b5b447639fc4d6c452933-ol7_x86_64_latest_ELS
gimp-libs-2.8.22-1.0.7.el7.i686.rpm13baf49f328ef9788e969d0ebe14b77db2e5a5ad3db73cfe51c36abb93a9acdb-ol7_x86_64_latest_ELS
gimp-libs-2.8.22-1.0.7.el7.x86_64.rpm698394a1d5ac08b6d5f02e38edaa3f3d61bf90bf17d6ee395624a97bebf1a7f9-ol7_x86_64_latest_ELS



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights