Skip to main content
Services
How We Work
Technology
Results
Resources
Company
Log in
Get Assessment
SUSE-SU-2026:0684-1 | Mondoo Vulnerability Intelligence
Vulnerability Intelligence
SUSE-SU-2026:0684-1
SUSE-SU-2026:0684-1
UNKNOWN
Security update for gimp
Published Feb 27, 2026
Modified 1 months ago
Fix available
Details
This update for gimp fixes the following issues:
CVE-2026-2044: lack of proper initialization of memory can allow remote attackers to execute arbitrary code (bsc#1258532).
CVE-2026-2045: check offset in the colormap is valid before using it (bsc#1258533).
CVE-2026-2048: lack of proper validation of user-supplied data can allow remote attackers to execute arbitrary code (bsc#1258535).
Affected Packages
gimp
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.47.1
gimp-devel
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.47.1
gimp-lang
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.47.1
gimp-plugin-aa
SUSE Linux Enterprise Module for Package Hub 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.47.1
libgimp-2_0-0
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.47.1
libgimpui-2_0-0
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.47.1
libgimp-2_0-0-32bit
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.47.1
libgimpui-2_0-0-32bit
openSUSE Leap 15.6
Fixed in:
2.10.30-150400.3.47.1
References
REPORT
https://bugzilla.suse.com/1258532
REPORT
https://bugzilla.suse.com/1258533
REPORT
https://bugzilla.suse.com/1258535
WEB
https://www.suse.com/security/cve/CVE-2025-10934
WEB
https://www.suse.com/security/cve/CVE-2026-2044
WEB
https://www.suse.com/security/cve/CVE-2026-2045
WEB
https://www.suse.com/security/cve/CVE-2026-2048
ADVISORY
https://www.suse.com/support/update/announcement/2026/suse-su-20260684-1/
Upstream
CVE-2025-10934
CVE-2026-2044
CVE-2026-2045
CVE-2026-2048
Related
CVE-2025-10934
CVE-2026-2044
CVE-2026-2045
CVE-2026-2048
Ecosystems
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Workstation Extension 15 SP7
openSUSE Leap 15.6
Timeline
Published
Feb 27, 2026
Modified
Feb 27, 2026