[CLSA-2026:1784134559] gimp: Fix of CVE-2026-58379
Type:
security
Severity:
Important
Release date:
2026-07-15 16:56:11 UTC
Description:
- CVE-2026-58379: fix heap buffer overflow in PSP file parser by correcting the line_width computation for low bit depths and reading line_width bytes instead of width in read_channel_data
CVEs fixed:
Updated packages:
  • gimp-2.99.8-4.el9.2.tuxcare.els13.x86_64.rpm
    sha:ceafd12e36569d4e20718e128c7be4916adda2a96255dd2c34d0d867804884a1
  • gimp-devel-2.99.8-4.el9.2.tuxcare.els13.x86_64.rpm
    sha:8dd2d15aba711dbb7f3fb92fd628f6d56d1c8cbc528c534a563b8f2875cfbd99
  • gimp-devel-tools-2.99.8-4.el9.2.tuxcare.els13.x86_64.rpm
    sha:44aa4e604eeeffc2ea0ba0af02ac9078694642ec2d3b2ada29886348b4619f99
  • gimp-libs-2.99.8-4.el9.2.tuxcare.els13.i686.rpm
    sha:cc7696707a33621e93d2f9415fd2d9330451243f298df158c6a7e7669daa68ca
  • gimp-libs-2.99.8-4.el9.2.tuxcare.els13.x86_64.rpm
    sha:93693df2837fb6a0d2e9ed8a289055aedef10e262418a26a8702c7a7f2b54b9c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.