Red Hat Security Advisory: gimp:2.8 security update
The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fix(es): * gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10922) * gimp: GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2025-10920) * gimp: GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability (CVE-2025-10923) * gimp: GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10921) * gimp: GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10925) * gimp: GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability (CVE-2025-10924) * gimp: GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10934) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
AI Analysis
Technical Summary
This advisory covers seven distinct remote code execution vulnerabilities in GIMP 2.8 related to improper parsing of several image file formats. The flaws include heap-based buffer overflows (CVE-2025-10922, CVE-2025-10921, CVE-2025-10934), stack-based buffer overflow (CVE-2025-10925), integer overflows (CVE-2025-10923, CVE-2025-10924), and an out-of-bounds write (CVE-2025-10920). These vulnerabilities could allow an attacker to execute arbitrary code remotely by crafting malicious image files. The issues affect the gimp:2.8 module as distributed in Red Hat Enterprise Linux 8 and its extended life cycle variants. Red Hat has released updated packages to remediate these vulnerabilities.
Potential Impact
Successful exploitation of these vulnerabilities could allow remote attackers to execute arbitrary code on affected systems by tricking users into opening specially crafted image files. This could lead to full compromise of the affected system. The vulnerabilities affect multiple image parsing components, increasing the attack surface. No known exploits in the wild have been reported at this time.
Mitigation Recommendations
Red Hat has released an official security update for the gimp:2.8 module in Red Hat Enterprise Linux 8 that addresses these vulnerabilities. Users should apply the update as soon as possible to remediate the issues. For detailed instructions on applying the update, refer to the Red Hat advisory at https://access.redhat.com/articles/11258. No additional mitigations are indicated by the vendor advisory.
Red Hat Security Advisory: gimp:2.8 security update
Description
The GIMP (GNU Image Manipulation Program) is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fix(es): * gimp: GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10922) * gimp: GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2025-10920) * gimp: GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability (CVE-2025-10923) * gimp: GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10921) * gimp: GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10925) * gimp: GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability (CVE-2025-10924) * gimp: GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-10934) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected software
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory covers seven distinct remote code execution vulnerabilities in GIMP 2.8 related to improper parsing of several image file formats. The flaws include heap-based buffer overflows (CVE-2025-10922, CVE-2025-10921, CVE-2025-10934), stack-based buffer overflow (CVE-2025-10925), integer overflows (CVE-2025-10923, CVE-2025-10924), and an out-of-bounds write (CVE-2025-10920). These vulnerabilities could allow an attacker to execute arbitrary code remotely by crafting malicious image files. The issues affect the gimp:2.8 module as distributed in Red Hat Enterprise Linux 8 and its extended life cycle variants. Red Hat has released updated packages to remediate these vulnerabilities.
Potential Impact
Successful exploitation of these vulnerabilities could allow remote attackers to execute arbitrary code on affected systems by tricking users into opening specially crafted image files. This could lead to full compromise of the affected system. The vulnerabilities affect multiple image parsing components, increasing the attack surface. No known exploits in the wild have been reported at this time.
Mitigation Recommendations
Red Hat has released an official security update for the gimp:2.8 module in Red Hat Enterprise Linux 8 that addresses these vulnerabilities. Users should apply the update as soon as possible to remediate the issues. For detailed instructions on applying the update, refer to the Red Hat advisory at https://access.redhat.com/articles/11258. No additional mitigations are indicated by the vendor advisory.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:22417
- Cve Count
- 7
- Additional Cves
- ["CVE-2025-10921","CVE-2025-10922","CVE-2025-10923","CVE-2025-10924","CVE-2025-10925","CVE-2025-10934"]
- Cvss Version
- null
Threat ID: 6a419ca927e9c79719ab8149
Added to database: 06/28/2026, 22:14:01 UTC
Last enriched: 07/12/2026, 11:08:17 UTC
Last updated: 07/13/2026, 19:47:30 UTC
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.