{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2025-8672","title":"Title"},{"category":"description","text":"MacOS version of GIMP bundles a Python interpreter that inherits the Transparency, Consent, and Control (TCC) permissions\ngranted by the user to the main application bundle. An attacker with local user access can\ninvoke this interpreter with arbitrary commands or scripts, leveraging the\napplication's previously granted TCC permissions to access user's files in privacy-protected folders without triggering user prompts. Accessing other resources beyond previously granted TCC permissions will prompt the user for approval in the name of GIMP, potentially disguising attacker's malicious intent.\n\nThis issue has been fixed in 3.1.4.2 version of GIMP.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2025-8672","url":"https://www.suse.com/security/cve/CVE-2025-8672"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1247958 for CVE-2025-8672","url":"https://bugzilla.suse.com/1247958"}],"title":"SUSE CVE CVE-2025-8672","tracking":{"current_release_date":"2025-08-12T23:35:35Z","generator":{"date":"2025-08-12T23:35:35Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2025-8672","initial_release_date":"2025-08-12T23:35:35Z","revision_history":[{"date":"2025-08-12T23:35:35Z","number":"2","summary":"Current version"}],"status":"interim","version":"2"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise Desktop 15 SP6","product":{"name":"SUSE Linux Enterprise Desktop 15 SP6","product_id":"SUSE Linux Enterprise Desktop 15 SP6","product_identification_helper":{"cpe":"cpe:/o:suse:sled:15:sp6"}}},{"category":"product_name","name":"SUSE Linux Enterprise Desktop 15 SP7","product":{"name":"SUSE Linux Enterprise Desktop 15 SP7","product_id":"SUSE Linux Enterprise Desktop 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sled:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Module for Package Hub 15 SP6","product":{"name":"SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6","product_identification_helper":{"cpe":"cpe:/o:suse:packagehub:15:sp6"}}},{"category":"product_name","name":"SUSE Linux Enterprise Module for Package Hub 15 SP7","product":{"name":"SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:packagehub:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP6","product":{"name":"SUSE Linux Enterprise Server 15 SP6","product_id":"SUSE Linux Enterprise Server 15 SP6","product_identification_helper":{"cpe":"cpe:/o:suse:sles:15:sp6"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP7","product":{"name":"SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sles:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15 SP6","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15:sp6"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15 SP7","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Workstation Extension 15 SP6","product":{"name":"SUSE Linux Enterprise Workstation Extension 15 SP6","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP6","product_identification_helper":{"cpe":"cpe:/o:suse:sle-we:15:sp6"}}},{"category":"product_name","name":"SUSE Linux Enterprise Workstation Extension 15 SP7","product":{"name":"SUSE Linux Enterprise Workstation Extension 15 SP7","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:sle-we:15:sp7"}}},{"category":"product_name","name":"openSUSE Leap 15.6","product":{"name":"openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6","product_identification_helper":{"cpe":"cpe:/o:opensuse:leap:15.6"}}},{"category":"product_version","name":"gimp","product":{"name":"gimp","product_id":"gimp","product_identification_helper":{"cpe":"cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/gimp@?upstream=gimp.src.rpm"}}},{"category":"product_version","name":"gimp-devel","product":{"name":"gimp-devel","product_id":"gimp-devel","product_identification_helper":{"cpe":"cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/gimp-devel@?upstream=gimp.src.rpm"}}},{"category":"product_version","name":"gimp-lang","product":{"name":"gimp-lang","product_id":"gimp-lang","product_identification_helper":{"cpe":"cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/gimp-lang@?upstream=gimp.src.rpm"}}},{"category":"product_version","name":"gimp-plugin-aa","product":{"name":"gimp-plugin-aa","product_id":"gimp-plugin-aa","product_identification_helper":{"cpe":"cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/gimp-plugin-aa@?upstream=gimp.src.rpm"}}},{"category":"product_version","name":"libgimp-2_0-0","product":{"name":"libgimp-2_0-0","product_id":"libgimp-2_0-0","product_identification_helper":{"purl":"pkg:rpm/suse/libgimp@2_0-0"}}},{"category":"product_version","name":"libgimp-2_0-0-32bit","product":{"name":"libgimp-2_0-0-32bit","product_id":"libgimp-2_0-0-32bit","product_identification_helper":{"cpe":"cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libgimp-2_0-0-32bit@?upstream=gimp.src.rpm"}}},{"category":"product_version","name":"libgimpui-2_0-0","product":{"name":"libgimpui-2_0-0","product_id":"libgimpui-2_0-0","product_identification_helper":{"purl":"pkg:rpm/suse/libgimpui@2_0-0"}}},{"category":"product_version","name":"libgimpui-2_0-0-32bit","product":{"name":"libgimpui-2_0-0-32bit","product_id":"libgimpui-2_0-0-32bit","product_identification_helper":{"cpe":"cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libgimpui-2_0-0-32bit@?upstream=gimp.src.rpm"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"gimp as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp"},"product_reference":"gimp","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp-devel as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-devel"},"product_reference":"gimp-devel","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp-lang as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-lang"},"product_reference":"gimp-lang","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp-plugin-aa as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-plugin-aa"},"product_reference":"gimp-plugin-aa","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:libgimp-2_0-0"},"product_reference":"libgimp-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:libgimpui-2_0-0"},"product_reference":"libgimpui-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp"},"product_reference":"gimp","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp-devel as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-devel"},"product_reference":"gimp-devel","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp-lang as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-lang"},"product_reference":"gimp-lang","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp-plugin-aa as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-plugin-aa"},"product_reference":"gimp-plugin-aa","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:libgimp-2_0-0"},"product_reference":"libgimp-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:libgimpui-2_0-0"},"product_reference":"libgimpui-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp as component of SUSE Linux Enterprise Server 15 SP6","product_id":"SUSE Linux Enterprise Server 15 SP6:gimp"},"product_reference":"gimp","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp-devel as component of SUSE Linux Enterprise Server 15 SP6","product_id":"SUSE Linux Enterprise Server 15 SP6:gimp-devel"},"product_reference":"gimp-devel","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp-lang as component of SUSE Linux Enterprise Server 15 SP6","product_id":"SUSE Linux Enterprise Server 15 SP6:gimp-lang"},"product_reference":"gimp-lang","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0 as component of SUSE Linux Enterprise Server 15 SP6","product_id":"SUSE Linux Enterprise Server 15 SP6:libgimp-2_0-0"},"product_reference":"libgimp-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0 as component of SUSE Linux Enterprise Server 15 SP6","product_id":"SUSE Linux Enterprise Server 15 SP6:libgimpui-2_0-0"},"product_reference":"libgimpui-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP6:gimp"},"product_reference":"gimp","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp-devel as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP6:gimp-devel"},"product_reference":"gimp-devel","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp-lang as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP6:gimp-lang"},"product_reference":"gimp-lang","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libgimp-2_0-0"},"product_reference":"libgimp-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP6:libgimpui-2_0-0"},"product_reference":"libgimpui-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp as component of SUSE Linux Enterprise Desktop 15 SP6","product_id":"SUSE Linux Enterprise Desktop 15 SP6:gimp"},"product_reference":"gimp","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp-devel as component of SUSE Linux Enterprise Desktop 15 SP6","product_id":"SUSE Linux Enterprise Desktop 15 SP6:gimp-devel"},"product_reference":"gimp-devel","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp-lang as component of SUSE Linux Enterprise Desktop 15 SP6","product_id":"SUSE Linux Enterprise Desktop 15 SP6:gimp-lang"},"product_reference":"gimp-lang","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0 as component of SUSE Linux Enterprise Desktop 15 SP6","product_id":"SUSE Linux Enterprise Desktop 15 SP6:libgimp-2_0-0"},"product_reference":"libgimp-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0 as component of SUSE Linux Enterprise Desktop 15 SP6","product_id":"SUSE Linux Enterprise Desktop 15 SP6:libgimpui-2_0-0"},"product_reference":"libgimpui-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp as component of SUSE Linux Enterprise Workstation Extension 15 SP6","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP6:gimp"},"product_reference":"gimp","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp-devel as component of SUSE Linux Enterprise Workstation Extension 15 SP6","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP6:gimp-devel"},"product_reference":"gimp-devel","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp-lang as component of SUSE Linux Enterprise Workstation Extension 15 SP6","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP6:gimp-lang"},"product_reference":"gimp-lang","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0 as component of SUSE Linux Enterprise Workstation Extension 15 SP6","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP6:libgimp-2_0-0"},"product_reference":"libgimp-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0 as component of SUSE Linux Enterprise Workstation Extension 15 SP6","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP6:libgimpui-2_0-0"},"product_reference":"libgimpui-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"gimp as component of SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7:gimp"},"product_reference":"gimp","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp-devel as component of SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7:gimp-devel"},"product_reference":"gimp-devel","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp-lang as component of SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7:gimp-lang"},"product_reference":"gimp-lang","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0 as component of SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7:libgimp-2_0-0"},"product_reference":"libgimp-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0 as component of SUSE Linux Enterprise Server 15 SP7","product_id":"SUSE Linux Enterprise Server 15 SP7:libgimpui-2_0-0"},"product_reference":"libgimpui-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp as component of SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7:gimp"},"product_reference":"gimp","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp-devel as component of SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7:gimp-devel"},"product_reference":"gimp-devel","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp-lang as component of SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7:gimp-lang"},"product_reference":"gimp-lang","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7:libgimp-2_0-0"},"product_reference":"libgimp-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP7","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP7:libgimpui-2_0-0"},"product_reference":"libgimpui-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp as component of SUSE Linux Enterprise Desktop 15 SP7","product_id":"SUSE Linux Enterprise Desktop 15 SP7:gimp"},"product_reference":"gimp","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp-devel as component of SUSE Linux Enterprise Desktop 15 SP7","product_id":"SUSE Linux Enterprise Desktop 15 SP7:gimp-devel"},"product_reference":"gimp-devel","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp-lang as component of SUSE Linux Enterprise Desktop 15 SP7","product_id":"SUSE Linux Enterprise Desktop 15 SP7:gimp-lang"},"product_reference":"gimp-lang","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0 as component of SUSE Linux Enterprise Desktop 15 SP7","product_id":"SUSE Linux Enterprise Desktop 15 SP7:libgimp-2_0-0"},"product_reference":"libgimp-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0 as component of SUSE Linux Enterprise Desktop 15 SP7","product_id":"SUSE Linux Enterprise Desktop 15 SP7:libgimpui-2_0-0"},"product_reference":"libgimpui-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Desktop 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp as component of SUSE Linux Enterprise Workstation Extension 15 SP7","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP7:gimp"},"product_reference":"gimp","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp-devel as component of SUSE Linux Enterprise Workstation Extension 15 SP7","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP7:gimp-devel"},"product_reference":"gimp-devel","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp-lang as component of SUSE Linux Enterprise Workstation Extension 15 SP7","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP7:gimp-lang"},"product_reference":"gimp-lang","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0 as component of SUSE Linux Enterprise Workstation Extension 15 SP7","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP7:libgimp-2_0-0"},"product_reference":"libgimp-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0 as component of SUSE Linux Enterprise Workstation Extension 15 SP7","product_id":"SUSE Linux Enterprise Workstation Extension 15 SP7:libgimpui-2_0-0"},"product_reference":"libgimpui-2_0-0","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"gimp as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:gimp"},"product_reference":"gimp","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"gimp-devel as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:gimp-devel"},"product_reference":"gimp-devel","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"gimp-lang as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:gimp-lang"},"product_reference":"gimp-lang","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"gimp-plugin-aa as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:gimp-plugin-aa"},"product_reference":"gimp-plugin-aa","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:libgimp-2_0-0"},"product_reference":"libgimp-2_0-0","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"libgimp-2_0-0-32bit as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:libgimp-2_0-0-32bit"},"product_reference":"libgimp-2_0-0-32bit","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:libgimpui-2_0-0"},"product_reference":"libgimpui-2_0-0","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"libgimpui-2_0-0-32bit as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:libgimpui-2_0-0-32bit"},"product_reference":"libgimpui-2_0-0-32bit","relates_to_product_reference":"openSUSE Leap 15.6"}]},"vulnerabilities":[{"cve":"CVE-2025-8672","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2025-8672"}],"notes":[{"category":"general","text":"MacOS version of GIMP bundles a Python interpreter that inherits the Transparency, Consent, and Control (TCC) permissions\ngranted by the user to the main application bundle. An attacker with local user access can\ninvoke this interpreter with arbitrary commands or scripts, leveraging the\napplication's previously granted TCC permissions to access user's files in privacy-protected folders without triggering user prompts. Accessing other resources beyond previously granted TCC permissions will prompt the user for approval in the name of GIMP, potentially disguising attacker's malicious intent.\n\nThis issue has been fixed in 3.1.4.2 version of GIMP.","title":"CVE description"}],"product_status":{"known_not_affected":["SUSE Linux Enterprise Desktop 15 SP6:gimp","SUSE Linux Enterprise Desktop 15 SP6:gimp-devel","SUSE Linux Enterprise Desktop 15 SP6:gimp-lang","SUSE Linux Enterprise Desktop 15 SP6:libgimp-2_0-0","SUSE Linux Enterprise Desktop 15 SP6:libgimpui-2_0-0","SUSE Linux Enterprise Desktop 15 SP7:gimp","SUSE Linux Enterprise Desktop 15 SP7:gimp-devel","SUSE Linux Enterprise Desktop 15 SP7:gimp-lang","SUSE Linux Enterprise Desktop 15 SP7:libgimp-2_0-0","SUSE Linux Enterprise Desktop 15 SP7:libgimpui-2_0-0","SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp","SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-devel","SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-lang","SUSE Linux Enterprise Module for Package Hub 15 SP6:gimp-plugin-aa","SUSE Linux Enterprise Module for Package Hub 15 SP6:libgimp-2_0-0","SUSE Linux Enterprise Module for Package Hub 15 SP6:libgimpui-2_0-0","SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp","SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-devel","SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-lang","SUSE Linux Enterprise Module for Package Hub 15 SP7:gimp-plugin-aa","SUSE Linux Enterprise Module for Package Hub 15 SP7:libgimp-2_0-0","SUSE Linux Enterprise Module for Package Hub 15 SP7:libgimpui-2_0-0","SUSE Linux Enterprise Server 15 SP6:gimp","SUSE Linux Enterprise Server 15 SP6:gimp-devel","SUSE Linux Enterprise Server 15 SP6:gimp-lang","SUSE Linux Enterprise Server 15 SP6:libgimp-2_0-0","SUSE Linux Enterprise Server 15 SP6:libgimpui-2_0-0","SUSE Linux Enterprise Server 15 SP7:gimp","SUSE Linux Enterprise Server 15 SP7:gimp-devel","SUSE Linux Enterprise Server 15 SP7:gimp-lang","SUSE Linux Enterprise Server 15 SP7:libgimp-2_0-0","SUSE Linux Enterprise Server 15 SP7:libgimpui-2_0-0","SUSE Linux Enterprise Server for SAP Applications 15 SP6:gimp","SUSE Linux Enterprise Server for SAP Applications 15 SP6:gimp-devel","SUSE Linux Enterprise Server for SAP Applications 15 SP6:gimp-lang","SUSE Linux Enterprise Server for SAP Applications 15 SP6:libgimp-2_0-0","SUSE Linux Enterprise Server for SAP Applications 15 SP6:libgimpui-2_0-0","SUSE Linux Enterprise Server for SAP Applications 15 SP7:gimp","SUSE Linux Enterprise Server for SAP Applications 15 SP7:gimp-devel","SUSE Linux Enterprise Server for SAP Applications 15 SP7:gimp-lang","SUSE Linux Enterprise Server for SAP Applications 15 SP7:libgimp-2_0-0","SUSE Linux Enterprise Server for SAP Applications 15 SP7:libgimpui-2_0-0","SUSE Linux Enterprise Workstation Extension 15 SP6:gimp","SUSE Linux Enterprise Workstation Extension 15 SP6:gimp-devel","SUSE Linux Enterprise Workstation Extension 15 SP6:gimp-lang","SUSE Linux Enterprise Workstation Extension 15 SP6:libgimp-2_0-0","SUSE Linux Enterprise Workstation Extension 15 SP6:libgimpui-2_0-0","SUSE Linux Enterprise Workstation Extension 15 SP7:gimp","SUSE Linux Enterprise Workstation Extension 15 SP7:gimp-devel","SUSE Linux Enterprise Workstation Extension 15 SP7:gimp-lang","SUSE Linux Enterprise Workstation Extension 15 SP7:libgimp-2_0-0","SUSE Linux Enterprise Workstation Extension 15 SP7:libgimpui-2_0-0","openSUSE Leap 15.6:gimp","openSUSE Leap 15.6:gimp-devel","openSUSE Leap 15.6:gimp-lang","openSUSE Leap 15.6:gimp-plugin-aa","openSUSE Leap 15.6:libgimp-2_0-0","openSUSE Leap 15.6:libgimp-2_0-0-32bit","openSUSE Leap 15.6:libgimpui-2_0-0","openSUSE Leap 15.6:libgimpui-2_0-0-32bit"]},"references":[{"category":"external","summary":"CVE-2025-8672","url":"https://www.suse.com/security/cve/CVE-2025-8672"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1247958 for CVE-2025-8672","url":"https://bugzilla.suse.com/1247958"}],"threats":[{"category":"impact","date":"2025-08-11T14:00:10Z","details":"important"}],"title":"CVE-2025-8672"}]}