CVE-2025-48797: 
Alma Linux vulnerability analysis and mitigation

CVE-2025-48797 is a security vulnerability discovered in GIMP's TGA (Truevision Graphics Adapter) parser component, disclosed on May 26, 2025. The vulnerability affects multiple versions of GIMP across different Red Hat Enterprise Linux distributions, including versions 8 and 9. This flaw was found when processing certain TGA image files and affects GIMP versions prior to 3.0.0 (Wiz Database, NVD Database).

The vulnerability has been assigned a CVSS v3.1 base score of 7.3 (High severity) with the vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H. It is categorized as CWE-122, which relates to heap-based buffer overflow issues. The technical assessment reveals that the vulnerability consists of two buffer over-reads and one heap-based buffer overflow in the TGA parser component (NVD Database, Red Hat Bugzilla).

When exploited, the vulnerability can lead to significant impacts on system confidentiality, integrity, and availability. If a user opens a specially crafted TGA image file, GIMP can be tricked into making serious memory errors, potentially leading to crashes and causing a heap buffer overflow. The high CVSS score of 7.3 indicates substantial security risk to affected systems (Wiz Database, NVD Database).

According to available information, GIMP version 3.0.0 and later are not affected by this vulnerability. Users are advised to upgrade to version 3.0.0 or later to mitigate the risk. For affected versions, no official workaround has been published at the time of reporting (Wiz Database).