Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-48797

Опубликовано: 27 мая 2025
Источник: debian

Описание

A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing a heap buffer overflow.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
gimpfixed3.0.0~RC1-4package

Примечания

  • https://bugzilla.redhat.com/show_bug.cgi?id=2368558

  • https://gitlab.gnome.org/GNOME/gimp/-/issues/11822

  • Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/49755f085a6fcc9c692b14e67856e91a79245688 (GIMP_3_0_0_RC1)

  • Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/723d383e57e8f599c4a44ab8541ea6902e29579e (GIMP_3_0_0_RC1)

  • Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/2ba35e5b3d43d881b0623f47b8068d9ee19d1d70 (GIMP_3_0_0_RC1)

  • Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/1f062867172d5c68b858a6efa3011686aa32bb38 (GIMP_3_0_0_RC1)

  • Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/8d309dd0385fdd298520b69148542375f56ef977 (gimp-2-10)

  • Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/97f8c2e468cffce70c6772e74cbff8eda4e8c180 (gimp-2-10)

  • Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/d7f0829ae995ca7ca9c64851a1ed03b11702ef1c (gimp-2-10)

  • Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/ffb7cad1a402377927bc2dc62dad324ae03cec92 (gimp-2-10)

Связанные уязвимости

CVSS3: 7.3
ubuntu
23 дня назад

A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing a heap buffer overflow.

CVSS3: 7.3
redhat
24 дня назад

A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing a heap buffer overflow.

CVSS3: 7.3
nvd
23 дня назад

A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing a heap buffer overflow.

CVSS3: 7.3
github
23 дня назад

A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing a heap buffer overflow.