CVE-2025-6035

一、漏洞信息
 漏洞编号：[CVE-2025-6035](https://nvd.nist.gov/vuln/detail/CVE-2025-6035)
 漏洞归属组件：[gimp](https://gitee.com/src-openeuler/gimp)
 漏洞归属的版本：2.10.6,2.99.10,2.99.6,3.0.2
 CVSS V3.0分值：
  BaseScore：6.6 Medium
  Vector：CVSS：3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
 漏洞简述：
  A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP  Despeckle  plug-in. The issue occurs due to unchecked multiplication of image dimensions, such as width, height, and bytes-per-pixel (img_bpp), which can result in allocating insufficient memory and subsequently performing out-of-bounds writes. This issue could lead to heap corruption, a potential denial of service (DoS), or arbitrary code execution in certain scenarios.
 漏洞公开时间：2025-06-14 00:15:28
 漏洞创建时间：2025-06-13 23:45:04
 漏洞详情参考链接：
  https://nvd.nist.gov/vuln/detail/CVE-2025-6035
<details>
<summary>更多参考(点击展开)</summary>

| 参考来源 | 参考链接 | 来源链接 |
| ------- | -------- | -------- |
|  | https://access.redhat.com/security/cve/CVE-2025-6035 |  |
|  | https://bugzilla.redhat.com/show_bug.cgi?id=2372515 |  |
|  | https://www.mend.io/vulnerability-database/CVE-2025-6035 |  |
|  | https://ubuntu.com/security/CVE-2025-6035 |  |
|  | https://www.cve.org/CVERecord?id=CVE-2025-6035 |  |
|  | https://gitlab.gnome.org/GNOME/gimp/-/issues/13518 |  |
|  | https://security-tracker.debian.org/tracker/CVE-2025-6035 |  |
|  | https://github.com/GNOME/gimp/commit/548bc3a46d54711d974aae9ce1bce291376c0436 |  |
|  | https://bugzilla.redhat.com/show_bug.cgi?id=2372515 |  |
|  | https://access.redhat.com/security/cve/CVE-2025-6035 |  |
|  | https://bugzilla.redhat.com/show_bug.cgi?id=2372515 |  |
|  | https://vigilance.fr/vulnerability/GIMP-integer-overflow-via-Despeckle-47430 |  |
|  | https://nvd.nist.gov/vuln/detail/CVE-2025-6035 |  |
|  | h |  |

</details>

漏洞分析指导链接：
  https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md
 漏洞数据来源:
  七彩瞬析开源风险感知平台
 漏洞补丁信息：
  <details>
<summary>详情(点击展开)</summary>

| 影响的包 | 修复版本 | 修复补丁 | 问题引入补丁 | 来源  |
| ------- | -------- | ------- | -------- | --------- |
| GNOME/gimp |  | https://gitlab.gnome.org/GNOME/gimp/-/commit/548bc3a46d54711d974aae9ce1bce291376c0436.patch |  | ljqc |
|  |  | https://github.com/GNOME/gimp/commit/548bc3a46d54711d974aae9ce1bce291376c0436 |  | snyk |

</details>

二、漏洞分析结构反馈
 影响性分析说明：
  A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP Despeckle plug-in. The issue occurs due to unchecked multiplication of image dimensions, such as width, height, and bytes-per-pixel (img_bpp), which can result in allocating insufficient memory and subsequently performing out-of-bounds writes. This issue could lead to heap corruption, a potential denial of service (DoS), or arbitrary code execution in certain scenarios.
 openEuler评分：
  6.6
 Vector：CVSS：3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
 受影响版本排查(受影响/不受影响)：
  1.openEuler-20.03-LTS-SP4(2.10.6):受影响
2.openEuler-24.03-LTS(3.0.2):受影响
3.openEuler-24.03-LTS-Next(3.0.2):受影响
4.openEuler-24.03-LTS-SP1(3.0.2):受影响
5.openEuler-24.03-LTS-SP2(3.0.2):受影响
6.master(3.0.4):不受影响
7.openEuler-22.03-LTS-SP3:不受影响
8.openEuler-22.03-LTS-SP4:不受影响

修复是否涉及abi变化(是/否)：
  1.master(3.0.4):否
2.openEuler-20.03-LTS-SP4(2.10.6):否
3.openEuler-22.03-LTS-SP3:否
4.openEuler-24.03-LTS(3.0.2):否
5.openEuler-24.03-LTS-Next(3.0.2):否
6.openEuler-22.03-LTS-SP4:否
7.openEuler-24.03-LTS-SP1(3.0.2):否
8.openEuler-24.03-LTS-SP2(3.0.2):否

原因说明：
  1.openEuler-24.03-LTS(3.0.2):正常修复
2.openEuler-24.03-LTS-Next(3.0.2):正常修复
3.openEuler-24.03-LTS-SP1(3.0.2):正常修复
4.openEuler-24.03-LTS-SP2(3.0.2):正常修复
5.openEuler-20.03-LTS-SP4(2.10.6):暂不修复-暂无解决方案或补丁
6.openEuler-22.03-LTS-SP3:不受影响-组件不存在
7.openEuler-22.03-LTS-SP4:不受影响-组件不存在
8.master(3.0.4):不受影响-漏洞代码不能被攻击者触发

src-openEuler/gimp
关闭

内容风险标识

评论 (8)

src-openEuler/gimp关闭 .gitee-modal { width: 500px !important; }

内容风险标识

CVE-2025-6035

评论 (8)

搜索帮助

src-openEuler/gimp
关闭