Description

A flaw was found in GIMP. The GIMP ani_load_image() function is vulnerable to a stack-based overflow. If a user opens.ANI files, GIMP may be used to store more information than the capacity allows. This flaw allows a malicious ANI file to trigger arbitrary code execution.

INFO

Published Date :

2025-05-27T14:04:55.400Z

Last Modified :

2025-11-20T07:39:52.612Z

Source :

redhat
AFFECTED PRODUCTS

The following products are affected by CVE-2025-48796 vulnerability.

Vendors Products
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-48796.

URL Resource
https://access.redhat.com/security/cve/CVE-2025-48796 cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=2368559 cve-icon cve-icon
https://gitlab.gnome.org/GNOME/gimp/-/issues/9257 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-48796 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-48796 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact