pool/gimp
SHA256
19
0
Fork 4
Code Issues Pull Requests 2 Activity

Synch with factory #2

Manually merged
anag_factory merged 14 commits from mgorse/gimp:leap-16.0 into leap-16.0 2026-01-16 16:55:31 +01:00
Conversation 18 Commits 14 Files Changed 5 +286 -8
mgorse commented 2025-11-14 23:04:12 +01:00
Contributor
Copy Link

CVE fixes

CVE fixes
mgorse added 8 commits 2025-11-14 23:04:13 +01:00
Update the changelog to fillup the security fix history. (CVE-2025-2760, bsc#1241690) 215ad970f6 
OBS-URL: https://build.opensuse.org/package/show/graphics/gimp?expand=0&rev=93
Accepting request 1300479 from graphics 55775f7b05 
OBS-URL: https://build.opensuse.org/request/show/1300479
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gimp?expand=0&rev=155
- Add gimp-CVE-2025-10924.patch: Fix integer overflow while parsing e830296eae 
FF files. (CVE-2025-10924, bsc#1250499)

OBS-URL: https://build.opensuse.org/package/show/graphics/gimp?expand=0&rev=94
Accepting request 1307522 from home:qzhao:branches:graphics 4f27ad9d25 
1, Add gimp-CVE-2025-10925.patch: Fix GIMP ILBM file parsing stack-based buffer overflow remote code execution vulnerability. (CVE-2025-10925, ZDI-25-914, ZDI-CAN-27793, bsc#1250501); 2, Add gimp-CVE-2025-10922.patch: Fix GIMP DCM file parsing heap-based buffer overflow remote code execution vulnerability. (CVE-2025-10922, ZDI-25-911, ZDI-CAN-27863, bsc#1250497); 3, Add gimp-CVE-2025-10920.patch: Prevent overflow attack by checking if output >= max, not just output > max. (CVE-2025-10920, ZDI-25-909, ZDI-CAN-27684, bsc#1250495)

OBS-URL: https://build.opensuse.org/request/show/1307522
OBS-URL: https://build.opensuse.org/package/show/graphics/gimp?expand=0&rev=95
Accepting request 1307201 from graphics d9d6023463 
OBS-URL: https://build.opensuse.org/request/show/1307201
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gimp?expand=0&rev=156
Accepting request 1309048 from graphics 3bfee05c38 
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/1309048
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gimp?expand=0&rev=157
- Update to 3.0.6 9f10d8d269 
OBS-URL: https://build.opensuse.org/package/show/graphics/gimp?expand=0&rev=96
Accepting request 1309404 from graphics 22c272bab6 
- Update to 3.0.6

OBS-URL: https://build.opensuse.org/request/show/1309404
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gimp?expand=0&rev=158
autogits_workflow_pr_bot requested review from legaldb 2025-11-14 23:04:42 +01:00
autogits_workflow_pr_bot requested review from maintenance-release-review 2025-11-14 23:04:42 +01:00
autogits_workflow_pr_bot requested review from opensuse-review 2025-11-14 23:04:43 +01:00
maintenance-release-review commented 2025-11-14 23:06:26 +01:00
First-time contributor
Copy Link

Review by maintenance-release-review represents a group of reviewers: abergmann, amattiazzo, bfilho, cmatos, crazybyte, emanuelecappello, gsonnu, maintenance-robot, mauriziogalli, mbozicevic, mimi_vx, mschnitzer, msmeissn, pluskalm, rfrohl, slemke .

Do not use standard review interface to review on behalf of the group.
To accept the review on behalf of the group, create the following comment: @maintenance-release-review: approve.
To request changes on behalf of the group, create the following comment: @maintenance-release-review: decline followed with lines justifying the decision.
Future edits of the comments are ignored, a new comment is required to change the review state.

Review by maintenance-release-review represents a group of reviewers: abergmann, amattiazzo, bfilho, cmatos, crazybyte, emanuelecappello, gsonnu, maintenance-robot, mauriziogalli, mbozicevic, mimi_vx, mschnitzer, msmeissn, pluskalm, rfrohl, slemke . Do **not** use standard review interface to review on behalf of the group. To accept the review on behalf of the group, create the following comment: `@maintenance-release-review: approve`. To request changes on behalf of the group, create the following comment: `@maintenance-release-review: decline` followed with lines justifying the decision. Future edits of the comments are ignored, a new comment is required to change the review state.
opensuse-review commented 2025-11-14 23:07:48 +01:00
Member
Copy Link

Review by opensuse-review represents a group of reviewers: alarrosa, anag, atartamo, bigironman, darix, dimstar, dmach, eroca, jdsn, jengelh, mcalabkova, mstrigl, nkrapp, oertel, RBrownSUSE, simotek, smithfarm .

Do not use standard review interface to review on behalf of the group.
To accept the review on behalf of the group, create the following comment: @opensuse-review: approve.
To request changes on behalf of the group, create the following comment: @opensuse-review: decline followed with lines justifying the decision.
Future edits of the comments are ignored, a new comment is required to change the review state.

Review by opensuse-review represents a group of reviewers: alarrosa, anag, atartamo, bigironman, darix, dimstar, dmach, eroca, jdsn, jengelh, mcalabkova, mstrigl, nkrapp, oertel, RBrownSUSE, simotek, smithfarm . Do **not** use standard review interface to review on behalf of the group. To accept the review on behalf of the group, create the following comment: `@opensuse-review: approve`. To request changes on behalf of the group, create the following comment: `@opensuse-review: decline` followed with lines justifying the decision. Future edits of the comments are ignored, a new comment is required to change the review state.
legaldb commented 2025-11-14 23:20:12 +01:00
Member
Copy Link

Legal reviewed as acceptable:

Accepted because previously reviewed under the same license (470261)
Legal reviewed as [acceptable](https://legaldb.suse.de/reviews/details/489403): ``` Accepted because previously reviewed under the same license (470261) ```
report.md
2.1 KiB
legaldb approved these changes 2025-11-14 23:20:12 +01:00
Dismissed
msmeissn commented 2025-11-17 14:47:14 +01:00
First-time contributor
Copy Link

fwiw does not build on slfo 1.2, gtk3 too old.

fwiw does not build on slfo 1.2, gtk3 too old.
mgorse commented 2025-11-17 16:13:42 +01:00
Author
Contributor
Copy Link

Oh, sorry--I just assumed that the update would be safe. It shouldn't really require 3.24.51; I'll update the factory package so that it builds on SLFO and adjust the PR.

Oh, sorry--I just assumed that the update would be safe. It shouldn't really require 3.24.51; I'll update the factory package so that it builds on SLFO and adjust the PR.
mgorse changed title from Synch with factory to WIP: Synch with factory 2025-11-17 16:24:08 +01:00
oertel commented 2026-01-12 17:16:45 +01:00
First-time contributor
Copy Link

ping .. any update here ?

ping .. any update here ?
mgorse commented 2026-01-12 19:35:15 +01:00
Author
Contributor
Copy Link

Thanks for the reminder. The factory version should build now, since the gtk3 requirement has been relaxed. But I see that Xiaoguang has a pr open that just adds a patch, so it would conflict with this one. I'll talk with him tonight and decide what to do.

Thanks for the reminder. The factory version should build now, since the gtk3 requirement has been relaxed. But I see that Xiaoguang has a pr open that just adds a patch, so it would conflict with this one. I'll talk with him tonight and decide what to do.
mgorse added 6 commits 2026-01-13 03:40:54 +01:00
Update changelog to recored security fix ID in previous update (CVE-2025-10922, ZDI-CAN-27863, bsc#1250497). ce6e29626d 
OBS-URL: https://build.opensuse.org/package/show/graphics/gimp?expand=0&rev=97
Accepting request 1320136 from graphics 3324d5eeb5 
Update changelog to recored security fix ID in previous update (CVE-2025-10922, ZDI-CAN-27863, bsc#1250497). (forwarded request 1320107 from qzhao)

OBS-URL: https://build.opensuse.org/request/show/1320136
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gimp?expand=0&rev=159
- Relax the gtk3_version requirement so that Leap 16.0 can build 2749e8cf55 
OBS-URL: https://build.opensuse.org/package/show/graphics/gimp?expand=0&rev=98
Accepting request 1325440 from graphics e821964374 
OBS-URL: https://build.opensuse.org/request/show/1325440
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gimp?expand=0&rev=160
- Add gimp-CVE-2025-15059.patch: vulnerability in file-psp 47f3048964 
(CVE-2025-15059, ZDI-CAN-28232, bsc#1255766).

OBS-URL: https://build.opensuse.org/package/show/graphics/gimp?expand=0&rev=99
Accepting request 1325843 from graphics fa630de895 
OBS-URL: https://build.opensuse.org/request/show/1325843
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/gimp?expand=0&rev=161
mgorse dismissed legaldb's review 2026-01-13 03:40:54 +01:00
Reason:

New commits pushed, approval review dismissed automatically according to repository settings

autogits_workflow_pr_bot requested review from legaldb 2026-01-13 03:41:02 +01:00
maintenance-release-review commented 2026-01-13 03:42:27 +01:00
First-time contributor
Copy Link

Review by maintenance-release-review represents a group of reviewers: abergmann, amattiazzo, bfilho, cmatos, crazybyte, emanuelecappello, gsonnu, maintenance-robot, mauriziogalli, mbozicevic, mimi_vx, mschnitzer, msmeissn, pluskalm, rfrohl, slemke .

Do not use standard review interface to review on behalf of the group.
To accept the review on behalf of the group, create the following comment: @maintenance-release-review: approve.
To request changes on behalf of the group, create the following comment: @maintenance-release-review: decline followed with lines justifying the decision.
Future edits of the comments are ignored, a new comment is required to change the review state.

Review by maintenance-release-review represents a group of reviewers: abergmann, amattiazzo, bfilho, cmatos, crazybyte, emanuelecappello, gsonnu, maintenance-robot, mauriziogalli, mbozicevic, mimi_vx, mschnitzer, msmeissn, pluskalm, rfrohl, slemke . Do **not** use standard review interface to review on behalf of the group. To accept the review on behalf of the group, create the following comment: `@maintenance-release-review: approve`. To request changes on behalf of the group, create the following comment: `@maintenance-release-review: decline` followed with lines justifying the decision. Future edits of the comments are ignored, a new comment is required to change the review state.
mgorse changed title from WIP: Synch with factory to Synch with factory 2026-01-13 03:42:31 +01:00
mgorse commented 2026-01-13 03:43:44 +01:00
Author
Contributor
Copy Link

Okay, I pinged Xiaoguang on slack, and he doesn't object to updating to the factory version, so I've updated my PRs.

Okay, I pinged Xiaoguang on slack, and he doesn't object to updating to the factory version, so I've updated my PRs.
opensuse-review commented 2026-01-13 03:48:17 +01:00
Member
Copy Link

Review by opensuse-review represents a group of reviewers: alarrosa, anag, atartamo, bigironman, darix, dimstar, dmach, eroca, jdsn, jengelh, mcalabkova, mstrigl, nkrapp, oertel, RBrownSUSE, simotek, smithfarm .

Do not use standard review interface to review on behalf of the group.
To accept the review on behalf of the group, create the following comment: @opensuse-review: approve.
To request changes on behalf of the group, create the following comment: @opensuse-review: decline followed with lines justifying the decision.
Future edits of the comments are ignored, a new comment is required to change the review state.

Review by opensuse-review represents a group of reviewers: alarrosa, anag, atartamo, bigironman, darix, dimstar, dmach, eroca, jdsn, jengelh, mcalabkova, mstrigl, nkrapp, oertel, RBrownSUSE, simotek, smithfarm . Do **not** use standard review interface to review on behalf of the group. To accept the review on behalf of the group, create the following comment: `@opensuse-review: approve`. To request changes on behalf of the group, create the following comment: `@opensuse-review: decline` followed with lines justifying the decision. Future edits of the comments are ignored, a new comment is required to change the review state.
legaldb commented 2026-01-13 04:00:26 +01:00
Member
Copy Link

Legal reviewed as acceptable:

Accepted because of no significant difference (496445)
Legal reviewed as [acceptable](https://legaldb.suse.de/reviews/details/497350): ``` Accepted because of no significant difference (496445) ```
report.md
2.3 KiB
legaldb approved these changes 2026-01-13 04:00:27 +01:00
oertel commented 2026-01-13 17:40:20 +01:00
First-time contributor
Copy Link

@opensuse-review : approve

LGTM

@opensuse-review : approve LGTM
oertel commented 2026-01-13 17:40:22 +01:00
First-time contributor
Copy Link

merge ok

merge ok
opensuse-review approved these changes 2026-01-13 17:41:05 +01:00
opensuse-review left a comment
Member
Copy Link

oertel approved a review on behalf of opensuse-review

oertel approved a review on behalf of opensuse-review
rfrohl commented 2026-01-16 16:31:35 +01:00
First-time contributor
Copy Link

@maintenance-release-review: approve

@maintenance-release-review: approve
maintenance-release-review approved these changes 2026-01-16 16:33:15 +01:00
maintenance-release-review left a comment
First-time contributor
Copy Link

rfrohl approved a review on behalf of maintenance-release-review

rfrohl approved a review on behalf of maintenance-release-review
anag_factory manually merged commit fa630de895 into leap-16.0 2026-01-16 16:55:31 +01:00
Sign in to join this conversation.
Reviewers
No Reviewers
legaldb
opensuse-review
maintenance-release-review
Labels
Clear labels
legaldb
Critical Priority
Critical legaldb priority
Archived
legaldb
High Priority
2
High legaldb priority
legaldb
Normal Priority
1
Normal legaldb priority
No Label
Milestone
No items
No Milestone
Assignees
Clear assignees
adamm_super adrianSuSE autobuild-owner autobuild-review autogits_workflow_pr_bot bigironman dirkmueller eroca factory_bot gitea_test legaldb lkocman-factory maxlin_factory opensuse-review packagehub-review smithfarm
No Assignees
7 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: pool/gimp#2
Delete Branch "mgorse/gimp:leap-16.0"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?