[Git][security-tracker-team/security-tracker][master] one gimp issue n/a for all released suites

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fbe0e0b8 by Moritz Muehlenhoff at 2025-12-25T00:57:41+01:00
one gimp issue n/a for all released suites

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1865,9 +1865,13 @@ CVE-2025-14488 (RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Pr
 	NOT-FOR-US: RealDefense
 CVE-2025-14425 (GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution ...)
 	- gimp 3.2.0~RC2-1
+	[trixie] - gimp <not-affected> (Vulnerable code not present)
+	[bookworm] - gimp <not-affected> (Vulnerable code not present)
+	[bullseye] - gimp <not-affected> (Vulnerable code not present)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1139/
 	NOTE: https://gitlab.gnome.org/GNOME/gimp/-/issues/15285
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/cd1c88a0364ad1444c06536731972a99bd8643fd (GIMP_3_2_0_RC1)
+	NOTE: Introduced in: https://gitlab.gnome.org/GNOME/gimp/-/commit/19c57a9765ac3451c9cde94ccb06bec5ae06fbd8 (GIMP_3_1_2)
 CVE-2025-14424 (GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerabili ...)
 	- gimp 3.2.0~RC2-1
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1138/



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbe0e0b8e47872cf251c341b412ad0488af9f92b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fbe0e0b8e47872cf251c341b412ad0488af9f92b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251224/9c3e160a/attachment.htm>