Skip to main content
Vulnerability Intelligence
Platform
Solutions
Customers
Resources
Company
Login
Get Demo
SUSE-SU-2026:0313-1 | Mondoo Vulnerability Intelligence
Vulnerability Intelligence
SUSE-SU-2026:0313-1
SUSE-SU-2026:0313-1
UNKNOWN
Security update for gimp
Published Jan 28, 2026
Modified 1 months ago
Fix available
Details
This update for gimp fixes the following issues:
CVE-2025-14422: Fixed RCE vulnerability due to PNM file parsing integer overflow (bsc#1255293)
CVE-2025-14425: Fixed RCE vulnerability due to JP2 file parsing heap-based buffer overflow (bsc#1255296)
Affected Packages
gimp
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.38.1
gimp-devel
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.38.1
gimp-lang
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.38.1
gimp-plugin-aa
SUSE Linux Enterprise Module for Package Hub 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.38.1
libgimp-2_0-0
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.38.1
libgimpui-2_0-0
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.38.1
libgimp-2_0-0-32bit
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.38.1
libgimpui-2_0-0-32bit
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.38.1
References
REPORT
https://bugzilla.suse.com/1255293
REPORT
https://bugzilla.suse.com/1255296
WEB
https://www.suse.com/security/cve/CVE-2025-14422
WEB
https://www.suse.com/security/cve/CVE-2025-14425
ADVISORY
https://www.suse.com/support/update/announcement/2026/suse-su-20260313-1/
Upstream
CVE-2025-14422
CVE-2025-14425
Related
CVE-2025-14422
CVE-2025-14425
Ecosystems
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Timeline
Published
Jan 28, 2026
Modified
Jan 28, 2026