[meta-gnome,whinlatter,05/15] gimp: update 3.0.6 -> 3.0.8

From: Markus Volk <f_l_k@t-online.de>

- remove cve fixes which are included in this release
- remove the fix for bzip2. meson.build was improved so this is not
  required anymore
- inherit bash-completion

This releases contains a lot of bugfixes. The below list is not
exhaustive.
Core:
  - Font handling improvements:
    * Font loading on start massively sped up.
    * As an exception, Skia font family (apparently quite common on macOS)
      is special-cased because it behaves weirdly and was not working with
      current font handling.
    * Various other fixes related to font handling.
    * We now wait for fonts to be fully loaded before loading any file.
  - Command Line Interface:
    * Option -i / --no-interface is not shown anymore on `gimp-console`
      binary (it can still be used — it does nothing there anyway —, which
      allows to use the same sets of option with the GUI binary, and also
      so that existing shell scripts don't break).
    * Option --show-debug-menu is not hidden anymore for discoverability.
    * The `gimp-3.0` executable can now run with --no-interface even when
      no display is available (ex: virtual terminal with no window
      manager/compositor, containers, etc.). This used to only work with
      `gimp-console-3.0` executable.
  - Windows:
    * output CLI messages to the parent console like Linux and macOS.
    * Ctrl+C signals are now correctly handled in the attached console.
    * The attached console supports color too.
    * Interpreters are run conditionally if running in console.
  - macOS: default to "quartz" Input Method for emoji keyboard support.
  - Wayland: wait before we get our first surface before listing input
    devices to work around a Wayland limitation and GTK bug.
  - Default "Search" feature in GTK3 is now disabled in the component
    editor in the Channels dockable.
  - Several fixes related to Quick Mask handling.
  - Fixed some cases where config migration from GIMP 2 to GIMP 3 was
    problematic.
  - Several buggy undo cases were fixed.
  - Several fixes related to pass-through group layers.
  - Export will now be properly triggered even if no drawables are
    selected (this is not a requirement anymore with GIMP 3 API).
  - Path import and export respectively from and to SVG improved.
  - Serialize colors in legacy GimpRGB format into a XCF when the XCF
    version is older than GIMP 3 for backward compatibility.
Tools:
  - Symmetry: fix initial stroke symmetry when using pixmap brushes.
  - Move tool: fixed weird position jumps in some cases.
Graphical User Interface:
  - Center buttons in overlay dialogs.
  - Headerbar's (when titlebar and menubar are merged) button colors
    now match our theme.
  - Dialogs' header icon and view will now scale based on custom icon
    size.
  - Resize dialog: Canvas Size fill combo set to insensitive if layers
    won't be resized.
  - Navigation and Selection editor will now properly match the theme
    (in particular, in dark mode, they won't show large bright area).

  - Do not show outlines when hovering the absent "Fx" icon anymore,
    which was confusing people into making it look like you could click
    and interact with this empty area.
Plug-ins:
  - Fixes on: OpenRaster export, TIFF import, Map Object, PDF export,
    Gradient Flare, ANI export, Script-Fu, DDS export, Fractal Explorer,
    PSP import, ICO import, XWD import, PSD import, WebP export, ICNS
    import, Gimpressionist, JPEG 2000 import, Busy Dialog.
  - Scale entries have been replaced by spin scale widgets in a bunch of
    plug-ins.
  - Fixed vulnerabilities: ZDI-CAN-28376, ZDI-CAN-28311, ZDI-CAN-28273,
    ZDI-CAN-28158, ZDI-CAN-28232, ZDI-CAN-28265, ZDI-CAN-28530,
    ZDI-CAN-28248, PSP issue 15732.
  - Script-Fu improved to not initialize UI code unnecessarily (and
    therefore make it unusable on systems without a display).
API:
  - libgimp:
    * Fixes where made in libgimp metadata object.
    * Make GExiv2Metadata as parent of GimpMetadata visible to
      Gobject-Introspection tools (bindings were missing this
      information).
    * Fixes made on: gimp_drawable_get_thumbnail(),
      gimp_drawable_get_sub_thumbnail(), gimp_drawable_filter_new(),
      gimp_proc_view_new(), gimp_procedure_set_sensitivity_mask(),
      gimp_procedure_dialog_get_spin_scale().
    * Remove thumbnail metadata before writing it on export, to make
      sure we don't cary on metadata written by other software in
      thumbnails.
  - libgimpconfig:
    * Improve error messaging on config deserialization.
    * Fix gimp_config_serialize_value() when serializing file objects.
    * New functions: gimp_config_get_xcf_version() and
      gimp_config_set_xcf_version().
  - libgimpcolor:
    * gimp_color_is_perceptually_identical() docs clarified.
  - libgimpbase:
    * The host config directory is now shown in MSIX.
    * The host config directory is now shown in flatpak.
  - libgimpwidgets:
    * Fixes made on: GimpLabelEntry, gimp_widget_free_native_handle().
  - libgimpcolor:
    * New function: gimp_cairo_surface_get_buffer()
    * Deprecated function: gimp_cairo_surface_create_buffer() in favor
      of gimp_cairo_surface_get_buffer().
      The function implementation was also changed so that it does not
      necessarily return a linear-memory backed buffer anymore (it
      might, but developers should not have any expectation about this).
Build:
  - Third-party binary plug-in support in the Snap backported from the
    original third-party snap.
  - Snap package for release is now created and submitted on a release
    pipeline.
  - Release URLs added to AppStream metadata.
  - We do not build GEGL with Matting Levin for Windows builds anymore
    because of crashes.
  - Flatpak nightly builds will now show a pseudo-release visible with
    `flatpak list`, showing proper version information.
  - Windows installer now has a dark mode.
  - Update changelog on MS Store (MSIX) releases.
  - AppImage now ships with full MIDI support.
  - Make it clearer that GExiv2 0.15.0 and over are incompatible
    (because of API breakage).
  - Improve build to ensure that the language list (shown in
    Preferences) is localized during compilation. This also means that a
    build machine should be set up for localization at build time when

    optional language selection is enabled.
  - We now require the generic C++14 standard, and not the GNU variant
    anymore.
  - MSVC support added.
  - Various tweaks which used to be required to make packages work as
    relocatable builds were dropped since babl and GEGL now have a
    relocatable option working also on Linux.
  - The `man` page of GIMP binaries was updated.
  - The `gimp-console` binary is now shipped in the Flatpak.
  - macOS pipeline added in our Gitlab CI.
  - Make sure that harfbuzz is built with libgraphite2 shaper on macOS.
  - Generate file associations for macOS automatically.
  - A Bash completion file was added for `gimp` and `gimp-console`
    binaries.

Signed-off-by: Markus Volk <f_l_k@t-online.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit f8fcc9ccf529455c992e79fc13e77dfc1a8dd9d9)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
---
 .../0001-gimp-cross-compile-fix-for-bz2.patch |  30 -----
 .../gimp/gimp/CVE-2025-14422.patch            |  66 -----------
 .../gimp/gimp/CVE-2025-14423.patch            | 106 ------------------
 .../gimp/gimp/CVE-2025-14424.patch            |  34 ------
 .../gimp/gimp/CVE-2025-14425.patch            |  79 -------------
 .../gimp/{gimp_3.0.6.bb => gimp_3.0.8.bb}     |   9 +-
 6 files changed, 2 insertions(+), 322 deletions(-)
 delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch
 delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch
 delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch
 delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch
 delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch
 rename meta-gnome/recipes-gimp/gimp/{gimp_3.0.6.bb => gimp_3.0.8.bb} (92%)

Hi Gyorgy,

Getting following error when building for qemux86 with musl and clang

/gimpbacktrace-linux.c.o: in function `gimp_backtrace_get_address_info':
| /usr/src/debug/gimp/3.0.8/../sources/gimp-3.0.8/app/core/gimpbacktrace-linux.c:708:(.text+0xc14):
undefined reference to `_ULx86_init_local'
| /yocto/bitbake-builds/poky-whinlatter/build/tmp/work/core2-32-poky-linux-musl/gimp/3.0.8/recipe-sysroot-native/usr/bin/i686-poky-linux-musl/i686-poky-linux-musl-ld:
/usr/src/debug/gimp/3.0.8/../sources/gimp-3.0.8/app/core/gimpbacktrace-linux.c:709:(.text+0xc27):
undefined reference to `_ULx86_set_reg'
| /yocto/bitbake-builds/poky-whinlatter/build/tmp/work/core2-32-poky-linux-musl/gimp/3.0.8/recipe-sysroot-native/usr/bin/i686-poky-linux-musl/i686-poky-linux-musl-ld:
/usr/src/debug/gimp/3.0.8/../sources/gimp-3.0.8/app/core/gimpbacktrace-linux.c:710:(.text+0xc61):
undefined reference to `_ULx86_get_proc_name'
| i686-poky-linux-musl-clang++: error: linker command failed with exit
code 1 (use -v to see invocation)
| ninja: build stopped: subcommand failed.

Can you please have a look into it?

cheers
Ankur

On Tue, Feb 3, 2026 at 10:14 AM Gyorgy Sarvari via
lists.openembedded.org <skandigraun=gmail.com@lists.openembedded.org>
wrote:
>
> From: Markus Volk <f_l_k@t-online.de>
>
> - remove cve fixes which are included in this release
> - remove the fix for bzip2. meson.build was improved so this is not
>   required anymore
> - inherit bash-completion
>
> This releases contains a lot of bugfixes. The below list is not
> exhaustive.
> Core:
>   - Font handling improvements:
>     * Font loading on start massively sped up.
>     * As an exception, Skia font family (apparently quite common on macOS)
>       is special-cased because it behaves weirdly and was not working with
>       current font handling.
>     * Various other fixes related to font handling.
>     * We now wait for fonts to be fully loaded before loading any file.
>   - Command Line Interface:
>     * Option -i / --no-interface is not shown anymore on `gimp-console`
>       binary (it can still be used — it does nothing there anyway —, which
>       allows to use the same sets of option with the GUI binary, and also
>       so that existing shell scripts don't break).
>     * Option --show-debug-menu is not hidden anymore for discoverability.
>     * The `gimp-3.0` executable can now run with --no-interface even when
>       no display is available (ex: virtual terminal with no window
>       manager/compositor, containers, etc.). This used to only work with
>       `gimp-console-3.0` executable.
>   - Windows:
>     * output CLI messages to the parent console like Linux and macOS.
>     * Ctrl+C signals are now correctly handled in the attached console.
>     * The attached console supports color too.
>     * Interpreters are run conditionally if running in console.
>   - macOS: default to "quartz" Input Method for emoji keyboard support.
>   - Wayland: wait before we get our first surface before listing input
>     devices to work around a Wayland limitation and GTK bug.
>   - Default "Search" feature in GTK3 is now disabled in the component
>     editor in the Channels dockable.
>   - Several fixes related to Quick Mask handling.
>   - Fixed some cases where config migration from GIMP 2 to GIMP 3 was
>     problematic.
>   - Several buggy undo cases were fixed.
>   - Several fixes related to pass-through group layers.
>   - Export will now be properly triggered even if no drawables are
>     selected (this is not a requirement anymore with GIMP 3 API).
>   - Path import and export respectively from and to SVG improved.
>   - Serialize colors in legacy GimpRGB format into a XCF when the XCF
>     version is older than GIMP 3 for backward compatibility.
> Tools:
>   - Symmetry: fix initial stroke symmetry when using pixmap brushes.
>   - Move tool: fixed weird position jumps in some cases.
> Graphical User Interface:
>   - Center buttons in overlay dialogs.
>   - Headerbar's (when titlebar and menubar are merged) button colors
>     now match our theme.
>   - Dialogs' header icon and view will now scale based on custom icon
>     size.
>   - Resize dialog: Canvas Size fill combo set to insensitive if layers
>     won't be resized.
>   - Navigation and Selection editor will now properly match the theme
>     (in particular, in dark mode, they won't show large bright area).
>
>   - Do not show outlines when hovering the absent "Fx" icon anymore,
>     which was confusing people into making it look like you could click
>     and interact with this empty area.
> Plug-ins:
>   - Fixes on: OpenRaster export, TIFF import, Map Object, PDF export,
>     Gradient Flare, ANI export, Script-Fu, DDS export, Fractal Explorer,
>     PSP import, ICO import, XWD import, PSD import, WebP export, ICNS
>     import, Gimpressionist, JPEG 2000 import, Busy Dialog.
>   - Scale entries have been replaced by spin scale widgets in a bunch of
>     plug-ins.
>   - Fixed vulnerabilities: ZDI-CAN-28376, ZDI-CAN-28311, ZDI-CAN-28273,
>     ZDI-CAN-28158, ZDI-CAN-28232, ZDI-CAN-28265, ZDI-CAN-28530,
>     ZDI-CAN-28248, PSP issue 15732.
>   - Script-Fu improved to not initialize UI code unnecessarily (and
>     therefore make it unusable on systems without a display).
> API:
>   - libgimp:
>     * Fixes where made in libgimp metadata object.
>     * Make GExiv2Metadata as parent of GimpMetadata visible to
>       Gobject-Introspection tools (bindings were missing this
>       information).
>     * Fixes made on: gimp_drawable_get_thumbnail(),
>       gimp_drawable_get_sub_thumbnail(), gimp_drawable_filter_new(),
>       gimp_proc_view_new(), gimp_procedure_set_sensitivity_mask(),
>       gimp_procedure_dialog_get_spin_scale().
>     * Remove thumbnail metadata before writing it on export, to make
>       sure we don't cary on metadata written by other software in
>       thumbnails.
>   - libgimpconfig:
>     * Improve error messaging on config deserialization.
>     * Fix gimp_config_serialize_value() when serializing file objects.
>     * New functions: gimp_config_get_xcf_version() and
>       gimp_config_set_xcf_version().
>   - libgimpcolor:
>     * gimp_color_is_perceptually_identical() docs clarified.
>   - libgimpbase:
>     * The host config directory is now shown in MSIX.
>     * The host config directory is now shown in flatpak.
>   - libgimpwidgets:
>     * Fixes made on: GimpLabelEntry, gimp_widget_free_native_handle().
>   - libgimpcolor:
>     * New function: gimp_cairo_surface_get_buffer()
>     * Deprecated function: gimp_cairo_surface_create_buffer() in favor
>       of gimp_cairo_surface_get_buffer().
>       The function implementation was also changed so that it does not
>       necessarily return a linear-memory backed buffer anymore (it
>       might, but developers should not have any expectation about this).
> Build:
>   - Third-party binary plug-in support in the Snap backported from the
>     original third-party snap.
>   - Snap package for release is now created and submitted on a release
>     pipeline.
>   - Release URLs added to AppStream metadata.
>   - We do not build GEGL with Matting Levin for Windows builds anymore
>     because of crashes.
>   - Flatpak nightly builds will now show a pseudo-release visible with
>     `flatpak list`, showing proper version information.
>   - Windows installer now has a dark mode.
>   - Update changelog on MS Store (MSIX) releases.
>   - AppImage now ships with full MIDI support.
>   - Make it clearer that GExiv2 0.15.0 and over are incompatible
>     (because of API breakage).
>   - Improve build to ensure that the language list (shown in
>     Preferences) is localized during compilation. This also means that a
>     build machine should be set up for localization at build time when
>
>     optional language selection is enabled.
>   - We now require the generic C++14 standard, and not the GNU variant
>     anymore.
>   - MSVC support added.
>   - Various tweaks which used to be required to make packages work as
>     relocatable builds were dropped since babl and GEGL now have a
>     relocatable option working also on Linux.
>   - The `man` page of GIMP binaries was updated.
>   - The `gimp-console` binary is now shipped in the Flatpak.
>   - macOS pipeline added in our Gitlab CI.
>   - Make sure that harfbuzz is built with libgraphite2 shaper on macOS.
>   - Generate file associations for macOS automatically.
>   - A Bash completion file was added for `gimp` and `gimp-console`
>     binaries.
>
> Signed-off-by: Markus Volk <f_l_k@t-online.de>
> Signed-off-by: Khem Raj <raj.khem@gmail.com>
> (cherry picked from commit f8fcc9ccf529455c992e79fc13e77dfc1a8dd9d9)
> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
> ---
>  .../0001-gimp-cross-compile-fix-for-bz2.patch |  30 -----
>  .../gimp/gimp/CVE-2025-14422.patch            |  66 -----------
>  .../gimp/gimp/CVE-2025-14423.patch            | 106 ------------------
>  .../gimp/gimp/CVE-2025-14424.patch            |  34 ------
>  .../gimp/gimp/CVE-2025-14425.patch            |  79 -------------
>  .../gimp/{gimp_3.0.6.bb => gimp_3.0.8.bb}     |   9 +-
>  6 files changed, 2 insertions(+), 322 deletions(-)
>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch
>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch
>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch
>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch
>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch
>  rename meta-gnome/recipes-gimp/gimp/{gimp_3.0.6.bb => gimp_3.0.8.bb} (92%)
>
> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch b/meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch
> deleted file mode 100644
> index 380e425f25..0000000000
> --- a/meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch
> +++ /dev/null
> @@ -1,30 +0,0 @@
> -From a7e40e19d17404cf5ec4135fc1becd5a90f5e1e1 Mon Sep 17 00:00:00 2001
> -From: Markus Volk <f_l_k@t-online.de>
> -Date: Wed, 25 Dec 2024 07:27:04 +0100
> -Subject: [PATCH] gimp: cross-compile fix for bz2
> -
> -autotools bzip2 build does not create pkgconfig files so looking for the dependency fails.
> -
> -Signed-off-by: Markus Volk <f_l_k@t-online.de>
> -
> -Upstream-Status: Inappropriate [can probably be removed once bzip2 is built with meson or cmake]
> ----
> - meson.build | 2 +-
> - 1 file changed, 1 insertion(+), 1 deletion(-)
> -
> -diff --git a/meson.build b/meson.build
> -index 4e48f8c64c..d5dce47015 100644
> ---- a/meson.build
> -+++ b/meson.build
> -@@ -777,7 +777,7 @@ zlib = dependency('zlib')
> - zlib = dependency('zlib')
> -
> - # Compiler-provided headers can't be found in crossroads environment
> --if not meson.is_cross_build()
> -+if true
> -   bz2 = cc.find_library('bz2')
> - else
> -   bz2 = dependency('bzip2')
> ---
> -2.47.1
> -
> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch
> deleted file mode 100644
> index 420e013916..0000000000
> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch
> +++ /dev/null
> @@ -1,66 +0,0 @@
> -From 0a941cab81396d65a8ab547847f8c542039e214f Mon Sep 17 00:00:00 2001
> -From: Gyorgy Sarvari <skandigraun@gmail.com>
> -Date: Sun, 23 Nov 2025 16:43:51 +0000
> -Subject: [PATCH] plug-ins: Fix ZDI-CAN-28273
> -
> -From: Alx Sa <cmyk.student@gmail.com>
> -
> -Resolves #15286
> -Adds a check to the memory allocation
> -in pnm_load_raw () with g_size_checked_mul ()
> -to see if the size would go out of bounds.
> -If so, we don't try to allocate and load the
> -image.
> -
> -CVE: CVE-2025-14422
> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/4ff2d773d58064e6130495de498e440f4a6d5edb]
> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
> ----
> - plug-ins/common/file-pnm.c | 13 +++++++++++--
> - 1 file changed, 11 insertions(+), 2 deletions(-)
> -
> -diff --git a/plug-ins/common/file-pnm.c b/plug-ins/common/file-pnm.c
> -index 32a33a4..9d349e9 100644
> ---- a/plug-ins/common/file-pnm.c
> -+++ b/plug-ins/common/file-pnm.c
> -@@ -674,7 +674,7 @@ load_image (GFile   *file,
> -             GError **error)
> - {
> -   GInputStream    *input;
> --  GeglBuffer      *buffer;
> -+  GeglBuffer      *buffer    = NULL;
> -   GimpImage * volatile image = NULL;
> -   GimpLayer       *layer;
> -   char             buf[BUFLEN + 4];  /* buffer for random things like scanning */
> -@@ -708,6 +708,9 @@ load_image (GFile   *file,
> -       g_object_unref (input);
> -       g_free (pnminfo);
> -
> -+      if (buffer)
> -+        g_object_unref (buffer);
> -+
> -       if (image)
> -         gimp_image_delete (image);
> -
> -@@ -1060,6 +1063,7 @@ pnm_load_raw (PNMScanner *scan,
> -   const Babl   *format = NULL;
> -   gint          bpc;
> -   guchar       *data, *d;
> -+  gsize         data_size;
> -   gushort      *s;
> -   gint          x, y, i;
> -   gint          start, end, scanlines;
> -@@ -1070,7 +1074,12 @@ pnm_load_raw (PNMScanner *scan,
> -     bpc = 1;
> -
> -   /* No overflow as long as gimp_tile_height() < 1365 = 2^(31 - 18) / 6 */
> --  data = g_new (guchar, gimp_tile_height () * info->xres * info->np * bpc);
> -+  if (! g_size_checked_mul (&data_size, gimp_tile_height (), info->xres) ||
> -+      ! g_size_checked_mul (&data_size, data_size, info->np)             ||
> -+      ! g_size_checked_mul (&data_size, data_size, bpc))
> -+    CHECK_FOR_ERROR (FALSE, info->jmpbuf, _("Unsupported maximum value."));
> -+
> -+  data = g_new (guchar, data_size);
> -
> -   input = pnmscanner_input (scan);
> -
> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch
> deleted file mode 100644
> index 50a0adfe89..0000000000
> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch
> +++ /dev/null
> @@ -1,106 +0,0 @@
> -From a83e8c4ad8ffbce40aa9f9a0f49880e802ef7da1 Mon Sep 17 00:00:00 2001
> -From: Gyorgy Sarvari <skandigraun@gmail.com>
> -Date: Sun, 23 Nov 2025 04:22:49 +0000
> -Subject: [PATCH] plug-ins: Fix ZDI-CAN-28311
> -
> -From: Alx Sa <cmyk.student@gmail.com>
> -
> -Resolves #15292
> -The IFF specification states that EHB format images
> -have exactly 32 colors in their palette. However, it
> -is possible for images in the wild to place an incorrect
> -palette size. This patch checks for this, and either limits
> -the palette size or breaks accordingly.
> -
> -CVE: CVE-2025-14423
> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/481cdbbb97746be1145ec3a633c567a68633c521]
> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
> ----
> - plug-ins/common/file-iff.c | 32 ++++++++++++++++++++++----------
> - 1 file changed, 22 insertions(+), 10 deletions(-)
> -
> -diff --git a/plug-ins/common/file-iff.c b/plug-ins/common/file-iff.c
> -index d144a96..f087947 100644
> ---- a/plug-ins/common/file-iff.c
> -+++ b/plug-ins/common/file-iff.c
> -@@ -337,7 +337,7 @@ load_image (GFile        *file,
> -       width      = bitMapHeader->w;
> -       height     = bitMapHeader->h;
> -       nPlanes    = bitMapHeader->nPlanes;
> --      row_length = (width + 15) / 16;
> -+      row_length = ((width + 15) / 16) * 2;
> -       pixel_size = nPlanes / 8;
> -       aspect_x   = bitMapHeader->xAspect;
> -       aspect_y   = bitMapHeader->yAspect;
> -@@ -375,6 +375,18 @@ load_image (GFile        *file,
> -             {
> -               /* EHB mode adds 32 more colors. Each are half the RGB values
> -                * of the first 32 colors */
> -+              if (palette_size < 32)
> -+                {
> -+                  g_set_error (error, G_FILE_ERROR,
> -+                               g_file_error_from_errno (errno),
> -+                               _("Invalid ILBM colormap size"));
> -+                  return NULL;
> -+                }
> -+              else if (palette_size > 32)
> -+                {
> -+                  palette_size = 32;
> -+                }
> -+
> -               for (gint j = 0; j < palette_size * 2; j++)
> -                 {
> -                   gint offset_index = j + 32;
> -@@ -386,7 +398,7 @@ load_image (GFile        *file,
> -                   gimp_cmap[offset_index * 3 + 2] =
> -                     colorMap->colorRegister[j].blue / 2;
> -                 }
> --              /* EHB mode always has 64 colors */
> -+              /* EHB mode always has 64 colors in total */
> -               palette_size = 64;
> -             }
> -         }
> -@@ -447,7 +459,7 @@ load_image (GFile        *file,
> -         {
> -           guchar *pixel_row;
> -
> --          pixel_row = g_malloc (width * pixel_size * sizeof (guchar));
> -+          pixel_row = g_malloc0 (width * pixel_size);
> -
> -           /* PBM uses one byte per pixel index */
> -           if (ILBM_imageIsPBM (true_image))
> -@@ -459,7 +471,7 @@ load_image (GFile        *file,
> -           else
> -             deleave_rgb_row (bitplanes, pixel_row, width, nPlanes, pixel_size);
> -
> --          bitplanes += (row_length * 2 * nPlanes);
> -+          bitplanes += (row_length * nPlanes);
> -
> -           gegl_buffer_set (buffer, GEGL_RECTANGLE (0, y_height, width, 1), 0,
> -                            NULL, pixel_row, GEGL_AUTO_ROWSTRIDE);
> -@@ -528,7 +540,7 @@ deleave_ham_row (const guchar *gimp_cmap,
> -   /* Deleave rows */
> -   for (gint i = 0; i < row_length; i++)
> -     {
> --      for (gint j = 0; j < 8; j++)
> -+      for (gint j = 0; j < nPlanes; j++)
> -         {
> -           guint8 bitmask = (1 << (8 - j)) - (1 << (7 - j));
> -           guint8 control = 0;
> -@@ -590,11 +602,11 @@ deleave_ham_row (const guchar *gimp_cmap,
> - }
> -
> - static void
> --deleave_rgb_row (IFF_UByte  *bitplanes,
> --                     guchar *pixel_row,
> --                     gint    width,
> --                     gint    nPlanes,
> --                     gint    pixel_size)
> -+deleave_rgb_row (IFF_UByte *bitplanes,
> -+                 guchar    *pixel_row,
> -+                 gint       width,
> -+                 gint       nPlanes,
> -+                 gint       pixel_size)
> - {
> -   gint row_length    = ((width + 15) / 16) * 2;
> -   gint current_pixel = 0;
> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch
> deleted file mode 100644
> index e7821d3109..0000000000
> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch
> +++ /dev/null
> @@ -1,34 +0,0 @@
> -From d30875b606085316b1cb7ac1da0d26e5bac0cf2c Mon Sep 17 00:00:00 2001
> -From: Gyorgy Sarvari <skandigraun@gmail.com>
> -Date: Thu, 13 Nov 2025 18:26:51 -0500
> -Subject: [PATCH] app: fix #15288 crash when loading malformed xcf
> -
> -From: Jacob Boerema <jgboerema@gmail.com>
> -
> -ZDI-CAN-28376 vulnerability
> -
> -Add extra tests to not crash on a NULL g_class.
> -
> -CVE: CVE-2025-14424
> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/5cc55d078b7fba995cef77d195fac325ee288ddd]
> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
> ----
> - app/core/gimpitemlist.c | 5 ++++-
> - 1 file changed, 4 insertions(+), 1 deletion(-)
> -
> -diff --git a/app/core/gimpitemlist.c b/app/core/gimpitemlist.c
> -index 6473938..a431519 100644
> ---- a/app/core/gimpitemlist.c
> -+++ b/app/core/gimpitemlist.c
> -@@ -345,7 +345,10 @@ gimp_item_list_named_new (GimpImage   *image,
> -   g_return_val_if_fail (GIMP_IS_IMAGE (image), NULL);
> -
> -   for (iter = items; iter; iter = iter->next)
> --    g_return_val_if_fail (g_type_is_a (G_OBJECT_TYPE (iter->data), item_type), NULL);
> -+    {
> -+      g_return_val_if_fail (iter->data && ((GTypeInstance*) (iter->data))->g_class, NULL);
> -+      g_return_val_if_fail (g_type_is_a (G_OBJECT_TYPE (iter->data), item_type), NULL);
> -+    }
> -
> -   if (! items)
> -     {
> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch
> deleted file mode 100644
> index 44e9587570..0000000000
> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch
> +++ /dev/null
> @@ -1,79 +0,0 @@
> -From 042e27792026460badbe49664c02fe181e95cb2b Mon Sep 17 00:00:00 2001
> -From: Gyorgy Sarvari <skandigraun@gmail.com>
> -Date: Wed, 12 Nov 2025 13:25:44 +0000
> -Subject: [PATCH] plug-ins: Mitigate ZDI-CAN-28248 for JP2 images
> -
> -From: Alx Sa <cmyk.student@gmail.com>
> -
> -Resolves #15285
> -Per the report, it's possible to exceed the size of the pixel buffer
> -with a high precision_scaled value, as we size it to the width * bpp.
> -This patch includes precision_scaled in the allocation calculation.
> -It also adds a g_size_checked_mul () check to ensure there's no
> -overflow, and moves the pixel and buffer memory freeing to occur
> -in the out section so that it always runs even on failure.
> -
> -CVE: CVE-2025-14425
> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/cd1c88a0364ad1444c06536731972a99bd8643fd]
> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
> ----
> - plug-ins/common/file-jp2-load.c | 23 ++++++++++++++++-------
> - 1 file changed, 16 insertions(+), 7 deletions(-)
> -
> -diff --git a/plug-ins/common/file-jp2-load.c b/plug-ins/common/file-jp2-load.c
> -index 064b616..604313a 100644
> ---- a/plug-ins/common/file-jp2-load.c
> -+++ b/plug-ins/common/file-jp2-load.c
> -@@ -1045,14 +1045,15 @@ load_image (GimpProcedure     *procedure,
> -   GimpColorProfile    *profile    = NULL;
> -   GimpImage           *gimp_image = NULL;
> -   GimpLayer           *layer;
> -+  GeglBuffer          *buffer     = NULL;
> -+  guchar              *pixels     = NULL;
> -+  gsize                pixels_size;
> -   GimpImageType        image_type;
> -   GimpImageBaseType    base_type;
> -   gint                 width;
> -   gint                 height;
> -   gint                 num_components;
> --  GeglBuffer          *buffer;
> -   gint                 i, j, k, it;
> --  guchar              *pixels;
> -   const Babl          *file_format;
> -   gint                 bpp;
> -   GimpPrecision        image_precision;
> -@@ -1318,7 +1319,15 @@ load_image (GimpProcedure     *procedure,
> -   bpp = babl_format_get_bytes_per_pixel (file_format);
> -
> -   buffer = gimp_drawable_get_buffer (GIMP_DRAWABLE (layer));
> --  pixels = g_new0 (guchar, width * bpp);
> -+
> -+  if (! g_size_checked_mul (&pixels_size, width, (bpp * (precision_scaled / 8))))
> -+    {
> -+      g_set_error (error, GIMP_PLUG_IN_ERROR, 0,
> -+                   _("Defined row size is too large in JP2 image '%s'."),
> -+                   gimp_file_get_utf8_name (file));
> -+      goto out;
> -+    }
> -+  pixels = g_new0 (guchar, pixels_size);
> -
> -   for (i = 0; i < height; i++)
> -     {
> -@@ -1344,13 +1353,13 @@ load_image (GimpProcedure     *procedure,
> -         gegl_buffer_set (buffer, GEGL_RECTANGLE (0, i, width, 1), 0,
> -                          file_format, pixels, GEGL_AUTO_ROWSTRIDE);
> -     }
> --
> --  g_free (pixels);
> --
> --  g_object_unref (buffer);
> -   gimp_progress_update (1.0);
> -
> -  out:
> -+  if (pixels)
> -+    g_free (pixels);
> -+  if (buffer)
> -+    g_object_unref (buffer);
> -   if (profile)
> -     g_object_unref (profile);
> -   if (image)
> diff --git a/meta-gnome/recipes-gimp/gimp/gimp_3.0.6.bb b/meta-gnome/recipes-gimp/gimp/gimp_3.0.8.bb
> similarity index 92%
> rename from meta-gnome/recipes-gimp/gimp/gimp_3.0.6.bb
> rename to meta-gnome/recipes-gimp/gimp/gimp_3.0.8.bb
> index fa192555bc..a5e892c508 100644
> --- a/meta-gnome/recipes-gimp/gimp/gimp_3.0.6.bb
> +++ b/meta-gnome/recipes-gimp/gimp/gimp_3.0.8.bb
> @@ -46,7 +46,7 @@ DEPENDS:append:libc-musl = " libexecinfo"
>
>  LDFLAGS:append:libc-musl = " -lexecinfo"
>
> -inherit meson gtk-icon-cache mime-xdg pkgconfig gettext gobject-introspection vala
> +inherit meson gtk-icon-cache mime-xdg pkgconfig gettext gobject-introspection vala bash-completion
>
>  GIR_MESON_OPTION = 'can-crosscompile-gir'
>  VALA_MESON_OPTION = "vala"
> @@ -57,16 +57,11 @@ GIDOCGEN_MESON_ENABLE_FLAG = "enabled"
>  GIDOCGEN_MESON_DISABLE_FLAG = "disabled"
>
>  SRC_URI = "https://download.gimp.org/gimp/v3.0/${BP}.tar.xz \
> -           file://0001-gimp-cross-compile-fix-for-bz2.patch \
>             file://0002-meson.build-reproducibility-fix.patch \
>             file://0001-meson.build-dont-check-for-lgi.patch \
>             file://0001-meson.build-require-iso-codes-native.patch \
> -           file://CVE-2025-14422.patch \
> -           file://CVE-2025-14423.patch \
> -           file://CVE-2025-14424.patch \
> -           file://CVE-2025-14425.patch \
>             "
> -SRC_URI[sha256sum] = "246c225383c72ef9f0dc7703b7d707084bbf177bd2900e94ce466a62862e296b"
> +SRC_URI[sha256sum] = "feb498acc01b26827cff1ff95aa8fb82cdd6a60d7abf773cfcd19abeafca3386"
>
>  PACKAGECONFIG[aa] = "-Daa=enabled,-Daa=disabled,aalib"
>  PACKAGECONFIG[alsa] = "-Dalsa=enabled,-Dalsa=disabled,alsa-lib"
>
> -=-=-=-=-=-=-=-=-=-=-=-
> Links: You receive all messages sent to this group.
> View/Reply Online (#124078): https://lists.openembedded.org/g/openembedded-devel/message/124078
> Mute This Topic: https://lists.openembedded.org/mt/117604891/3619737
> Group Owner: openembedded-devel+owner@lists.openembedded.org
> Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [ankur.tyagi85@gmail.com]
> -=-=-=-=-=-=-=-=-=-=-=-
>

On 2/3/26 10:55, Ankur Tyagi wrote:
> Hi Gyorgy,
>
> Getting following error when building for qemux86 with musl and clang
>
> /gimpbacktrace-linux.c.o: in function `gimp_backtrace_get_address_info':
> | /usr/src/debug/gimp/3.0.8/../sources/gimp-3.0.8/app/core/gimpbacktrace-linux.c:708:(.text+0xc14):
> undefined reference to `_ULx86_init_local'
> | /yocto/bitbake-builds/poky-whinlatter/build/tmp/work/core2-32-poky-linux-musl/gimp/3.0.8/recipe-sysroot-native/usr/bin/i686-poky-linux-musl/i686-poky-linux-musl-ld:
> /usr/src/debug/gimp/3.0.8/../sources/gimp-3.0.8/app/core/gimpbacktrace-linux.c:709:(.text+0xc27):
> undefined reference to `_ULx86_set_reg'
> | /yocto/bitbake-builds/poky-whinlatter/build/tmp/work/core2-32-poky-linux-musl/gimp/3.0.8/recipe-sysroot-native/usr/bin/i686-poky-linux-musl/i686-poky-linux-musl-ld:
> /usr/src/debug/gimp/3.0.8/../sources/gimp-3.0.8/app/core/gimpbacktrace-linux.c:710:(.text+0xc61):
> undefined reference to `_ULx86_get_proc_name'
> | i686-poky-linux-musl-clang++: error: linker command failed with exit
> code 1 (use -v to see invocation)
> | ninja: build stopped: subcommand failed.
>
> Can you please have a look into it?

Yup - this should fix it:
https://lists.openembedded.org/g/openembedded-devel/message/124100

> cheers
> Ankur
>
> On Tue, Feb 3, 2026 at 10:14 AM Gyorgy Sarvari via
> lists.openembedded.org <skandigraun=gmail.com@lists.openembedded.org>
> wrote:
>> From: Markus Volk <f_l_k@t-online.de>
>>
>> - remove cve fixes which are included in this release
>> - remove the fix for bzip2. meson.build was improved so this is not
>>   required anymore
>> - inherit bash-completion
>>
>> This releases contains a lot of bugfixes. The below list is not
>> exhaustive.
>> Core:
>>   - Font handling improvements:
>>     * Font loading on start massively sped up.
>>     * As an exception, Skia font family (apparently quite common on macOS)
>>       is special-cased because it behaves weirdly and was not working with
>>       current font handling.
>>     * Various other fixes related to font handling.
>>     * We now wait for fonts to be fully loaded before loading any file.
>>   - Command Line Interface:
>>     * Option -i / --no-interface is not shown anymore on `gimp-console`
>>       binary (it can still be used — it does nothing there anyway —, which
>>       allows to use the same sets of option with the GUI binary, and also
>>       so that existing shell scripts don't break).
>>     * Option --show-debug-menu is not hidden anymore for discoverability.
>>     * The `gimp-3.0` executable can now run with --no-interface even when
>>       no display is available (ex: virtual terminal with no window
>>       manager/compositor, containers, etc.). This used to only work with
>>       `gimp-console-3.0` executable.
>>   - Windows:
>>     * output CLI messages to the parent console like Linux and macOS.
>>     * Ctrl+C signals are now correctly handled in the attached console.
>>     * The attached console supports color too.
>>     * Interpreters are run conditionally if running in console.
>>   - macOS: default to "quartz" Input Method for emoji keyboard support.
>>   - Wayland: wait before we get our first surface before listing input
>>     devices to work around a Wayland limitation and GTK bug.
>>   - Default "Search" feature in GTK3 is now disabled in the component
>>     editor in the Channels dockable.
>>   - Several fixes related to Quick Mask handling.
>>   - Fixed some cases where config migration from GIMP 2 to GIMP 3 was
>>     problematic.
>>   - Several buggy undo cases were fixed.
>>   - Several fixes related to pass-through group layers.
>>   - Export will now be properly triggered even if no drawables are
>>     selected (this is not a requirement anymore with GIMP 3 API).
>>   - Path import and export respectively from and to SVG improved.
>>   - Serialize colors in legacy GimpRGB format into a XCF when the XCF
>>     version is older than GIMP 3 for backward compatibility.
>> Tools:
>>   - Symmetry: fix initial stroke symmetry when using pixmap brushes.
>>   - Move tool: fixed weird position jumps in some cases.
>> Graphical User Interface:
>>   - Center buttons in overlay dialogs.
>>   - Headerbar's (when titlebar and menubar are merged) button colors
>>     now match our theme.
>>   - Dialogs' header icon and view will now scale based on custom icon
>>     size.
>>   - Resize dialog: Canvas Size fill combo set to insensitive if layers
>>     won't be resized.
>>   - Navigation and Selection editor will now properly match the theme
>>     (in particular, in dark mode, they won't show large bright area).
>>
>>   - Do not show outlines when hovering the absent "Fx" icon anymore,
>>     which was confusing people into making it look like you could click
>>     and interact with this empty area.
>> Plug-ins:
>>   - Fixes on: OpenRaster export, TIFF import, Map Object, PDF export,
>>     Gradient Flare, ANI export, Script-Fu, DDS export, Fractal Explorer,
>>     PSP import, ICO import, XWD import, PSD import, WebP export, ICNS
>>     import, Gimpressionist, JPEG 2000 import, Busy Dialog.
>>   - Scale entries have been replaced by spin scale widgets in a bunch of
>>     plug-ins.
>>   - Fixed vulnerabilities: ZDI-CAN-28376, ZDI-CAN-28311, ZDI-CAN-28273,
>>     ZDI-CAN-28158, ZDI-CAN-28232, ZDI-CAN-28265, ZDI-CAN-28530,
>>     ZDI-CAN-28248, PSP issue 15732.
>>   - Script-Fu improved to not initialize UI code unnecessarily (and
>>     therefore make it unusable on systems without a display).
>> API:
>>   - libgimp:
>>     * Fixes where made in libgimp metadata object.
>>     * Make GExiv2Metadata as parent of GimpMetadata visible to
>>       Gobject-Introspection tools (bindings were missing this
>>       information).
>>     * Fixes made on: gimp_drawable_get_thumbnail(),
>>       gimp_drawable_get_sub_thumbnail(), gimp_drawable_filter_new(),
>>       gimp_proc_view_new(), gimp_procedure_set_sensitivity_mask(),
>>       gimp_procedure_dialog_get_spin_scale().
>>     * Remove thumbnail metadata before writing it on export, to make
>>       sure we don't cary on metadata written by other software in
>>       thumbnails.
>>   - libgimpconfig:
>>     * Improve error messaging on config deserialization.
>>     * Fix gimp_config_serialize_value() when serializing file objects.
>>     * New functions: gimp_config_get_xcf_version() and
>>       gimp_config_set_xcf_version().
>>   - libgimpcolor:
>>     * gimp_color_is_perceptually_identical() docs clarified.
>>   - libgimpbase:
>>     * The host config directory is now shown in MSIX.
>>     * The host config directory is now shown in flatpak.
>>   - libgimpwidgets:
>>     * Fixes made on: GimpLabelEntry, gimp_widget_free_native_handle().
>>   - libgimpcolor:
>>     * New function: gimp_cairo_surface_get_buffer()
>>     * Deprecated function: gimp_cairo_surface_create_buffer() in favor
>>       of gimp_cairo_surface_get_buffer().
>>       The function implementation was also changed so that it does not
>>       necessarily return a linear-memory backed buffer anymore (it
>>       might, but developers should not have any expectation about this).
>> Build:
>>   - Third-party binary plug-in support in the Snap backported from the
>>     original third-party snap.
>>   - Snap package for release is now created and submitted on a release
>>     pipeline.
>>   - Release URLs added to AppStream metadata.
>>   - We do not build GEGL with Matting Levin for Windows builds anymore
>>     because of crashes.
>>   - Flatpak nightly builds will now show a pseudo-release visible with
>>     `flatpak list`, showing proper version information.
>>   - Windows installer now has a dark mode.
>>   - Update changelog on MS Store (MSIX) releases.
>>   - AppImage now ships with full MIDI support.
>>   - Make it clearer that GExiv2 0.15.0 and over are incompatible
>>     (because of API breakage).
>>   - Improve build to ensure that the language list (shown in
>>     Preferences) is localized during compilation. This also means that a
>>     build machine should be set up for localization at build time when
>>
>>     optional language selection is enabled.
>>   - We now require the generic C++14 standard, and not the GNU variant
>>     anymore.
>>   - MSVC support added.
>>   - Various tweaks which used to be required to make packages work as
>>     relocatable builds were dropped since babl and GEGL now have a
>>     relocatable option working also on Linux.
>>   - The `man` page of GIMP binaries was updated.
>>   - The `gimp-console` binary is now shipped in the Flatpak.
>>   - macOS pipeline added in our Gitlab CI.
>>   - Make sure that harfbuzz is built with libgraphite2 shaper on macOS.
>>   - Generate file associations for macOS automatically.
>>   - A Bash completion file was added for `gimp` and `gimp-console`
>>     binaries.
>>
>> Signed-off-by: Markus Volk <f_l_k@t-online.de>
>> Signed-off-by: Khem Raj <raj.khem@gmail.com>
>> (cherry picked from commit f8fcc9ccf529455c992e79fc13e77dfc1a8dd9d9)
>> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
>> ---
>>  .../0001-gimp-cross-compile-fix-for-bz2.patch |  30 -----
>>  .../gimp/gimp/CVE-2025-14422.patch            |  66 -----------
>>  .../gimp/gimp/CVE-2025-14423.patch            | 106 ------------------
>>  .../gimp/gimp/CVE-2025-14424.patch            |  34 ------
>>  .../gimp/gimp/CVE-2025-14425.patch            |  79 -------------
>>  .../gimp/{gimp_3.0.6.bb => gimp_3.0.8.bb}     |   9 +-
>>  6 files changed, 2 insertions(+), 322 deletions(-)
>>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch
>>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch
>>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch
>>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch
>>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch
>>  rename meta-gnome/recipes-gimp/gimp/{gimp_3.0.6.bb => gimp_3.0.8.bb} (92%)
>>
>> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch b/meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch
>> deleted file mode 100644
>> index 380e425f25..0000000000
>> --- a/meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch
>> +++ /dev/null
>> @@ -1,30 +0,0 @@
>> -From a7e40e19d17404cf5ec4135fc1becd5a90f5e1e1 Mon Sep 17 00:00:00 2001
>> -From: Markus Volk <f_l_k@t-online.de>
>> -Date: Wed, 25 Dec 2024 07:27:04 +0100
>> -Subject: [PATCH] gimp: cross-compile fix for bz2
>> -
>> -autotools bzip2 build does not create pkgconfig files so looking for the dependency fails.
>> -
>> -Signed-off-by: Markus Volk <f_l_k@t-online.de>
>> -
>> -Upstream-Status: Inappropriate [can probably be removed once bzip2 is built with meson or cmake]
>> ----
>> - meson.build | 2 +-
>> - 1 file changed, 1 insertion(+), 1 deletion(-)
>> -
>> -diff --git a/meson.build b/meson.build
>> -index 4e48f8c64c..d5dce47015 100644
>> ---- a/meson.build
>> -+++ b/meson.build
>> -@@ -777,7 +777,7 @@ zlib = dependency('zlib')
>> - zlib = dependency('zlib')
>> -
>> - # Compiler-provided headers can't be found in crossroads environment
>> --if not meson.is_cross_build()
>> -+if true
>> -   bz2 = cc.find_library('bz2')
>> - else
>> -   bz2 = dependency('bzip2')
>> ---
>> -2.47.1
>> -
>> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch
>> deleted file mode 100644
>> index 420e013916..0000000000
>> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch
>> +++ /dev/null
>> @@ -1,66 +0,0 @@
>> -From 0a941cab81396d65a8ab547847f8c542039e214f Mon Sep 17 00:00:00 2001
>> -From: Gyorgy Sarvari <skandigraun@gmail.com>
>> -Date: Sun, 23 Nov 2025 16:43:51 +0000
>> -Subject: [PATCH] plug-ins: Fix ZDI-CAN-28273
>> -
>> -From: Alx Sa <cmyk.student@gmail.com>
>> -
>> -Resolves #15286
>> -Adds a check to the memory allocation
>> -in pnm_load_raw () with g_size_checked_mul ()
>> -to see if the size would go out of bounds.
>> -If so, we don't try to allocate and load the
>> -image.
>> -
>> -CVE: CVE-2025-14422
>> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/4ff2d773d58064e6130495de498e440f4a6d5edb]
>> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
>> ----
>> - plug-ins/common/file-pnm.c | 13 +++++++++++--
>> - 1 file changed, 11 insertions(+), 2 deletions(-)
>> -
>> -diff --git a/plug-ins/common/file-pnm.c b/plug-ins/common/file-pnm.c
>> -index 32a33a4..9d349e9 100644
>> ---- a/plug-ins/common/file-pnm.c
>> -+++ b/plug-ins/common/file-pnm.c
>> -@@ -674,7 +674,7 @@ load_image (GFile   *file,
>> -             GError **error)
>> - {
>> -   GInputStream    *input;
>> --  GeglBuffer      *buffer;
>> -+  GeglBuffer      *buffer    = NULL;
>> -   GimpImage * volatile image = NULL;
>> -   GimpLayer       *layer;
>> -   char             buf[BUFLEN + 4];  /* buffer for random things like scanning */
>> -@@ -708,6 +708,9 @@ load_image (GFile   *file,
>> -       g_object_unref (input);
>> -       g_free (pnminfo);
>> -
>> -+      if (buffer)
>> -+        g_object_unref (buffer);
>> -+
>> -       if (image)
>> -         gimp_image_delete (image);
>> -
>> -@@ -1060,6 +1063,7 @@ pnm_load_raw (PNMScanner *scan,
>> -   const Babl   *format = NULL;
>> -   gint          bpc;
>> -   guchar       *data, *d;
>> -+  gsize         data_size;
>> -   gushort      *s;
>> -   gint          x, y, i;
>> -   gint          start, end, scanlines;
>> -@@ -1070,7 +1074,12 @@ pnm_load_raw (PNMScanner *scan,
>> -     bpc = 1;
>> -
>> -   /* No overflow as long as gimp_tile_height() < 1365 = 2^(31 - 18) / 6 */
>> --  data = g_new (guchar, gimp_tile_height () * info->xres * info->np * bpc);
>> -+  if (! g_size_checked_mul (&data_size, gimp_tile_height (), info->xres) ||
>> -+      ! g_size_checked_mul (&data_size, data_size, info->np)             ||
>> -+      ! g_size_checked_mul (&data_size, data_size, bpc))
>> -+    CHECK_FOR_ERROR (FALSE, info->jmpbuf, _("Unsupported maximum value."));
>> -+
>> -+  data = g_new (guchar, data_size);
>> -
>> -   input = pnmscanner_input (scan);
>> -
>> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch
>> deleted file mode 100644
>> index 50a0adfe89..0000000000
>> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch
>> +++ /dev/null
>> @@ -1,106 +0,0 @@
>> -From a83e8c4ad8ffbce40aa9f9a0f49880e802ef7da1 Mon Sep 17 00:00:00 2001
>> -From: Gyorgy Sarvari <skandigraun@gmail.com>
>> -Date: Sun, 23 Nov 2025 04:22:49 +0000
>> -Subject: [PATCH] plug-ins: Fix ZDI-CAN-28311
>> -
>> -From: Alx Sa <cmyk.student@gmail.com>
>> -
>> -Resolves #15292
>> -The IFF specification states that EHB format images
>> -have exactly 32 colors in their palette. However, it
>> -is possible for images in the wild to place an incorrect
>> -palette size. This patch checks for this, and either limits
>> -the palette size or breaks accordingly.
>> -
>> -CVE: CVE-2025-14423
>> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/481cdbbb97746be1145ec3a633c567a68633c521]
>> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
>> ----
>> - plug-ins/common/file-iff.c | 32 ++++++++++++++++++++++----------
>> - 1 file changed, 22 insertions(+), 10 deletions(-)
>> -
>> -diff --git a/plug-ins/common/file-iff.c b/plug-ins/common/file-iff.c
>> -index d144a96..f087947 100644
>> ---- a/plug-ins/common/file-iff.c
>> -+++ b/plug-ins/common/file-iff.c
>> -@@ -337,7 +337,7 @@ load_image (GFile        *file,
>> -       width      = bitMapHeader->w;
>> -       height     = bitMapHeader->h;
>> -       nPlanes    = bitMapHeader->nPlanes;
>> --      row_length = (width + 15) / 16;
>> -+      row_length = ((width + 15) / 16) * 2;
>> -       pixel_size = nPlanes / 8;
>> -       aspect_x   = bitMapHeader->xAspect;
>> -       aspect_y   = bitMapHeader->yAspect;
>> -@@ -375,6 +375,18 @@ load_image (GFile        *file,
>> -             {
>> -               /* EHB mode adds 32 more colors. Each are half the RGB values
>> -                * of the first 32 colors */
>> -+              if (palette_size < 32)
>> -+                {
>> -+                  g_set_error (error, G_FILE_ERROR,
>> -+                               g_file_error_from_errno (errno),
>> -+                               _("Invalid ILBM colormap size"));
>> -+                  return NULL;
>> -+                }
>> -+              else if (palette_size > 32)
>> -+                {
>> -+                  palette_size = 32;
>> -+                }
>> -+
>> -               for (gint j = 0; j < palette_size * 2; j++)
>> -                 {
>> -                   gint offset_index = j + 32;
>> -@@ -386,7 +398,7 @@ load_image (GFile        *file,
>> -                   gimp_cmap[offset_index * 3 + 2] =
>> -                     colorMap->colorRegister[j].blue / 2;
>> -                 }
>> --              /* EHB mode always has 64 colors */
>> -+              /* EHB mode always has 64 colors in total */
>> -               palette_size = 64;
>> -             }
>> -         }
>> -@@ -447,7 +459,7 @@ load_image (GFile        *file,
>> -         {
>> -           guchar *pixel_row;
>> -
>> --          pixel_row = g_malloc (width * pixel_size * sizeof (guchar));
>> -+          pixel_row = g_malloc0 (width * pixel_size);
>> -
>> -           /* PBM uses one byte per pixel index */
>> -           if (ILBM_imageIsPBM (true_image))
>> -@@ -459,7 +471,7 @@ load_image (GFile        *file,
>> -           else
>> -             deleave_rgb_row (bitplanes, pixel_row, width, nPlanes, pixel_size);
>> -
>> --          bitplanes += (row_length * 2 * nPlanes);
>> -+          bitplanes += (row_length * nPlanes);
>> -
>> -           gegl_buffer_set (buffer, GEGL_RECTANGLE (0, y_height, width, 1), 0,
>> -                            NULL, pixel_row, GEGL_AUTO_ROWSTRIDE);
>> -@@ -528,7 +540,7 @@ deleave_ham_row (const guchar *gimp_cmap,
>> -   /* Deleave rows */
>> -   for (gint i = 0; i < row_length; i++)
>> -     {
>> --      for (gint j = 0; j < 8; j++)
>> -+      for (gint j = 0; j < nPlanes; j++)
>> -         {
>> -           guint8 bitmask = (1 << (8 - j)) - (1 << (7 - j));
>> -           guint8 control = 0;
>> -@@ -590,11 +602,11 @@ deleave_ham_row (const guchar *gimp_cmap,
>> - }
>> -
>> - static void
>> --deleave_rgb_row (IFF_UByte  *bitplanes,
>> --                     guchar *pixel_row,
>> --                     gint    width,
>> --                     gint    nPlanes,
>> --                     gint    pixel_size)
>> -+deleave_rgb_row (IFF_UByte *bitplanes,
>> -+                 guchar    *pixel_row,
>> -+                 gint       width,
>> -+                 gint       nPlanes,
>> -+                 gint       pixel_size)
>> - {
>> -   gint row_length    = ((width + 15) / 16) * 2;
>> -   gint current_pixel = 0;
>> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch
>> deleted file mode 100644
>> index e7821d3109..0000000000
>> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch
>> +++ /dev/null
>> @@ -1,34 +0,0 @@
>> -From d30875b606085316b1cb7ac1da0d26e5bac0cf2c Mon Sep 17 00:00:00 2001
>> -From: Gyorgy Sarvari <skandigraun@gmail.com>
>> -Date: Thu, 13 Nov 2025 18:26:51 -0500
>> -Subject: [PATCH] app: fix #15288 crash when loading malformed xcf
>> -
>> -From: Jacob Boerema <jgboerema@gmail.com>
>> -
>> -ZDI-CAN-28376 vulnerability
>> -
>> -Add extra tests to not crash on a NULL g_class.
>> -
>> -CVE: CVE-2025-14424
>> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/5cc55d078b7fba995cef77d195fac325ee288ddd]
>> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
>> ----
>> - app/core/gimpitemlist.c | 5 ++++-
>> - 1 file changed, 4 insertions(+), 1 deletion(-)
>> -
>> -diff --git a/app/core/gimpitemlist.c b/app/core/gimpitemlist.c
>> -index 6473938..a431519 100644
>> ---- a/app/core/gimpitemlist.c
>> -+++ b/app/core/gimpitemlist.c
>> -@@ -345,7 +345,10 @@ gimp_item_list_named_new (GimpImage   *image,
>> -   g_return_val_if_fail (GIMP_IS_IMAGE (image), NULL);
>> -
>> -   for (iter = items; iter; iter = iter->next)
>> --    g_return_val_if_fail (g_type_is_a (G_OBJECT_TYPE (iter->data), item_type), NULL);
>> -+    {
>> -+      g_return_val_if_fail (iter->data && ((GTypeInstance*) (iter->data))->g_class, NULL);
>> -+      g_return_val_if_fail (g_type_is_a (G_OBJECT_TYPE (iter->data), item_type), NULL);
>> -+    }
>> -
>> -   if (! items)
>> -     {
>> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch
>> deleted file mode 100644
>> index 44e9587570..0000000000
>> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch
>> +++ /dev/null
>> @@ -1,79 +0,0 @@
>> -From 042e27792026460badbe49664c02fe181e95cb2b Mon Sep 17 00:00:00 2001
>> -From: Gyorgy Sarvari <skandigraun@gmail.com>
>> -Date: Wed, 12 Nov 2025 13:25:44 +0000
>> -Subject: [PATCH] plug-ins: Mitigate ZDI-CAN-28248 for JP2 images
>> -
>> -From: Alx Sa <cmyk.student@gmail.com>
>> -
>> -Resolves #15285
>> -Per the report, it's possible to exceed the size of the pixel buffer
>> -with a high precision_scaled value, as we size it to the width * bpp.
>> -This patch includes precision_scaled in the allocation calculation.
>> -It also adds a g_size_checked_mul () check to ensure there's no
>> -overflow, and moves the pixel and buffer memory freeing to occur
>> -in the out section so that it always runs even on failure.
>> -
>> -CVE: CVE-2025-14425
>> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/cd1c88a0364ad1444c06536731972a99bd8643fd]
>> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
>> ----
>> - plug-ins/common/file-jp2-load.c | 23 ++++++++++++++++-------
>> - 1 file changed, 16 insertions(+), 7 deletions(-)
>> -
>> -diff --git a/plug-ins/common/file-jp2-load.c b/plug-ins/common/file-jp2-load.c
>> -index 064b616..604313a 100644
>> ---- a/plug-ins/common/file-jp2-load.c
>> -+++ b/plug-ins/common/file-jp2-load.c
>> -@@ -1045,14 +1045,15 @@ load_image (GimpProcedure     *procedure,
>> -   GimpColorProfile    *profile    = NULL;
>> -   GimpImage           *gimp_image = NULL;
>> -   GimpLayer           *layer;
>> -+  GeglBuffer          *buffer     = NULL;
>> -+  guchar              *pixels     = NULL;
>> -+  gsize                pixels_size;
>> -   GimpImageType        image_type;
>> -   GimpImageBaseType    base_type;
>> -   gint                 width;
>> -   gint                 height;
>> -   gint                 num_components;
>> --  GeglBuffer          *buffer;
>> -   gint                 i, j, k, it;
>> --  guchar              *pixels;
>> -   const Babl          *file_format;
>> -   gint                 bpp;
>> -   GimpPrecision        image_precision;
>> -@@ -1318,7 +1319,15 @@ load_image (GimpProcedure     *procedure,
>> -   bpp = babl_format_get_bytes_per_pixel (file_format);
>> -
>> -   buffer = gimp_drawable_get_buffer (GIMP_DRAWABLE (layer));
>> --  pixels = g_new0 (guchar, width * bpp);
>> -+
>> -+  if (! g_size_checked_mul (&pixels_size, width, (bpp * (precision_scaled / 8))))
>> -+    {
>> -+      g_set_error (error, GIMP_PLUG_IN_ERROR, 0,
>> -+                   _("Defined row size is too large in JP2 image '%s'."),
>> -+                   gimp_file_get_utf8_name (file));
>> -+      goto out;
>> -+    }
>> -+  pixels = g_new0 (guchar, pixels_size);
>> -
>> -   for (i = 0; i < height; i++)
>> -     {
>> -@@ -1344,13 +1353,13 @@ load_image (GimpProcedure     *procedure,
>> -         gegl_buffer_set (buffer, GEGL_RECTANGLE (0, i, width, 1), 0,
>> -                          file_format, pixels, GEGL_AUTO_ROWSTRIDE);
>> -     }
>> --
>> --  g_free (pixels);
>> --
>> --  g_object_unref (buffer);
>> -   gimp_progress_update (1.0);
>> -
>> -  out:
>> -+  if (pixels)
>> -+    g_free (pixels);
>> -+  if (buffer)
>> -+    g_object_unref (buffer);
>> -   if (profile)
>> -     g_object_unref (profile);
>> -   if (image)
>> diff --git a/meta-gnome/recipes-gimp/gimp/gimp_3.0.6.bb b/meta-gnome/recipes-gimp/gimp/gimp_3.0.8.bb
>> similarity index 92%
>> rename from meta-gnome/recipes-gimp/gimp/gimp_3.0.6.bb
>> rename to meta-gnome/recipes-gimp/gimp/gimp_3.0.8.bb
>> index fa192555bc..a5e892c508 100644
>> --- a/meta-gnome/recipes-gimp/gimp/gimp_3.0.6.bb
>> +++ b/meta-gnome/recipes-gimp/gimp/gimp_3.0.8.bb
>> @@ -46,7 +46,7 @@ DEPENDS:append:libc-musl = " libexecinfo"
>>
>>  LDFLAGS:append:libc-musl = " -lexecinfo"
>>
>> -inherit meson gtk-icon-cache mime-xdg pkgconfig gettext gobject-introspection vala
>> +inherit meson gtk-icon-cache mime-xdg pkgconfig gettext gobject-introspection vala bash-completion
>>
>>  GIR_MESON_OPTION = 'can-crosscompile-gir'
>>  VALA_MESON_OPTION = "vala"
>> @@ -57,16 +57,11 @@ GIDOCGEN_MESON_ENABLE_FLAG = "enabled"
>>  GIDOCGEN_MESON_DISABLE_FLAG = "disabled"
>>
>>  SRC_URI = "https://download.gimp.org/gimp/v3.0/${BP}.tar.xz \
>> -           file://0001-gimp-cross-compile-fix-for-bz2.patch \
>>             file://0002-meson.build-reproducibility-fix.patch \
>>             file://0001-meson.build-dont-check-for-lgi.patch \
>>             file://0001-meson.build-require-iso-codes-native.patch \
>> -           file://CVE-2025-14422.patch \
>> -           file://CVE-2025-14423.patch \
>> -           file://CVE-2025-14424.patch \
>> -           file://CVE-2025-14425.patch \
>>             "
>> -SRC_URI[sha256sum] = "246c225383c72ef9f0dc7703b7d707084bbf177bd2900e94ce466a62862e296b"
>> +SRC_URI[sha256sum] = "feb498acc01b26827cff1ff95aa8fb82cdd6a60d7abf773cfcd19abeafca3386"
>>
>>  PACKAGECONFIG[aa] = "-Daa=enabled,-Daa=disabled,aalib"
>>  PACKAGECONFIG[alsa] = "-Dalsa=enabled,-Dalsa=disabled,alsa-lib"
>>
>> -=-=-=-=-=-=-=-=-=-=-=-
>> Links: You receive all messages sent to this group.
>> View/Reply Online (#124078): https://lists.openembedded.org/g/openembedded-devel/message/124078
>> Mute This Topic: https://lists.openembedded.org/mt/117604891/3619737
>> Group Owner: openembedded-devel+owner@lists.openembedded.org
>> Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [ankur.tyagi85@gmail.com]
>> -=-=-=-=-=-=-=-=-=-=-=-
>>

On Wed, Feb 4, 2026 at 4:55 AM Gyorgy Sarvari <skandigraun@gmail.com> wrote:
>
> On 2/3/26 10:55, Ankur Tyagi wrote:
> > Hi Gyorgy,
> >
> > Getting following error when building for qemux86 with musl and clang
> >
> > /gimpbacktrace-linux.c.o: in function `gimp_backtrace_get_address_info':
> > | /usr/src/debug/gimp/3.0.8/../sources/gimp-3.0.8/app/core/gimpbacktrace-linux.c:708:(.text+0xc14):
> > undefined reference to `_ULx86_init_local'
> > | /yocto/bitbake-builds/poky-whinlatter/build/tmp/work/core2-32-poky-linux-musl/gimp/3.0.8/recipe-sysroot-native/usr/bin/i686-poky-linux-musl/i686-poky-linux-musl-ld:
> > /usr/src/debug/gimp/3.0.8/../sources/gimp-3.0.8/app/core/gimpbacktrace-linux.c:709:(.text+0xc27):
> > undefined reference to `_ULx86_set_reg'
> > | /yocto/bitbake-builds/poky-whinlatter/build/tmp/work/core2-32-poky-linux-musl/gimp/3.0.8/recipe-sysroot-native/usr/bin/i686-poky-linux-musl/i686-poky-linux-musl-ld:
> > /usr/src/debug/gimp/3.0.8/../sources/gimp-3.0.8/app/core/gimpbacktrace-linux.c:710:(.text+0xc61):
> > undefined reference to `_ULx86_get_proc_name'
> > | i686-poky-linux-musl-clang++: error: linker command failed with exit
> > code 1 (use -v to see invocation)
> > | ninja: build stopped: subcommand failed.
> >
> > Can you please have a look into it?
>
> Yup - this should fix it:
> https://lists.openembedded.org/g/openembedded-devel/message/124100
>

Thanks for the patch, quickly tested it and the build error is now resolved.

> > cheers
> > Ankur
> >
> > On Tue, Feb 3, 2026 at 10:14 AM Gyorgy Sarvari via
> > lists.openembedded.org <skandigraun=gmail.com@lists.openembedded.org>
> > wrote:
> >> From: Markus Volk <f_l_k@t-online.de>
> >>
> >> - remove cve fixes which are included in this release
> >> - remove the fix for bzip2. meson.build was improved so this is not
> >>   required anymore
> >> - inherit bash-completion
> >>
> >> This releases contains a lot of bugfixes. The below list is not
> >> exhaustive.
> >> Core:
> >>   - Font handling improvements:
> >>     * Font loading on start massively sped up.
> >>     * As an exception, Skia font family (apparently quite common on macOS)
> >>       is special-cased because it behaves weirdly and was not working with
> >>       current font handling.
> >>     * Various other fixes related to font handling.
> >>     * We now wait for fonts to be fully loaded before loading any file.
> >>   - Command Line Interface:
> >>     * Option -i / --no-interface is not shown anymore on `gimp-console`
> >>       binary (it can still be used — it does nothing there anyway —, which
> >>       allows to use the same sets of option with the GUI binary, and also
> >>       so that existing shell scripts don't break).
> >>     * Option --show-debug-menu is not hidden anymore for discoverability.
> >>     * The `gimp-3.0` executable can now run with --no-interface even when
> >>       no display is available (ex: virtual terminal with no window
> >>       manager/compositor, containers, etc.). This used to only work with
> >>       `gimp-console-3.0` executable.
> >>   - Windows:
> >>     * output CLI messages to the parent console like Linux and macOS.
> >>     * Ctrl+C signals are now correctly handled in the attached console.
> >>     * The attached console supports color too.
> >>     * Interpreters are run conditionally if running in console.
> >>   - macOS: default to "quartz" Input Method for emoji keyboard support.
> >>   - Wayland: wait before we get our first surface before listing input
> >>     devices to work around a Wayland limitation and GTK bug.
> >>   - Default "Search" feature in GTK3 is now disabled in the component
> >>     editor in the Channels dockable.
> >>   - Several fixes related to Quick Mask handling.
> >>   - Fixed some cases where config migration from GIMP 2 to GIMP 3 was
> >>     problematic.
> >>   - Several buggy undo cases were fixed.
> >>   - Several fixes related to pass-through group layers.
> >>   - Export will now be properly triggered even if no drawables are
> >>     selected (this is not a requirement anymore with GIMP 3 API).
> >>   - Path import and export respectively from and to SVG improved.
> >>   - Serialize colors in legacy GimpRGB format into a XCF when the XCF
> >>     version is older than GIMP 3 for backward compatibility.
> >> Tools:
> >>   - Symmetry: fix initial stroke symmetry when using pixmap brushes.
> >>   - Move tool: fixed weird position jumps in some cases.
> >> Graphical User Interface:
> >>   - Center buttons in overlay dialogs.
> >>   - Headerbar's (when titlebar and menubar are merged) button colors
> >>     now match our theme.
> >>   - Dialogs' header icon and view will now scale based on custom icon
> >>     size.
> >>   - Resize dialog: Canvas Size fill combo set to insensitive if layers
> >>     won't be resized.
> >>   - Navigation and Selection editor will now properly match the theme
> >>     (in particular, in dark mode, they won't show large bright area).
> >>
> >>   - Do not show outlines when hovering the absent "Fx" icon anymore,
> >>     which was confusing people into making it look like you could click
> >>     and interact with this empty area.
> >> Plug-ins:
> >>   - Fixes on: OpenRaster export, TIFF import, Map Object, PDF export,
> >>     Gradient Flare, ANI export, Script-Fu, DDS export, Fractal Explorer,
> >>     PSP import, ICO import, XWD import, PSD import, WebP export, ICNS
> >>     import, Gimpressionist, JPEG 2000 import, Busy Dialog.
> >>   - Scale entries have been replaced by spin scale widgets in a bunch of
> >>     plug-ins.
> >>   - Fixed vulnerabilities: ZDI-CAN-28376, ZDI-CAN-28311, ZDI-CAN-28273,
> >>     ZDI-CAN-28158, ZDI-CAN-28232, ZDI-CAN-28265, ZDI-CAN-28530,
> >>     ZDI-CAN-28248, PSP issue 15732.
> >>   - Script-Fu improved to not initialize UI code unnecessarily (and
> >>     therefore make it unusable on systems without a display).
> >> API:
> >>   - libgimp:
> >>     * Fixes where made in libgimp metadata object.
> >>     * Make GExiv2Metadata as parent of GimpMetadata visible to
> >>       Gobject-Introspection tools (bindings were missing this
> >>       information).
> >>     * Fixes made on: gimp_drawable_get_thumbnail(),
> >>       gimp_drawable_get_sub_thumbnail(), gimp_drawable_filter_new(),
> >>       gimp_proc_view_new(), gimp_procedure_set_sensitivity_mask(),
> >>       gimp_procedure_dialog_get_spin_scale().
> >>     * Remove thumbnail metadata before writing it on export, to make
> >>       sure we don't cary on metadata written by other software in
> >>       thumbnails.
> >>   - libgimpconfig:
> >>     * Improve error messaging on config deserialization.
> >>     * Fix gimp_config_serialize_value() when serializing file objects.
> >>     * New functions: gimp_config_get_xcf_version() and
> >>       gimp_config_set_xcf_version().
> >>   - libgimpcolor:
> >>     * gimp_color_is_perceptually_identical() docs clarified.
> >>   - libgimpbase:
> >>     * The host config directory is now shown in MSIX.
> >>     * The host config directory is now shown in flatpak.
> >>   - libgimpwidgets:
> >>     * Fixes made on: GimpLabelEntry, gimp_widget_free_native_handle().
> >>   - libgimpcolor:
> >>     * New function: gimp_cairo_surface_get_buffer()
> >>     * Deprecated function: gimp_cairo_surface_create_buffer() in favor
> >>       of gimp_cairo_surface_get_buffer().
> >>       The function implementation was also changed so that it does not
> >>       necessarily return a linear-memory backed buffer anymore (it
> >>       might, but developers should not have any expectation about this).
> >> Build:
> >>   - Third-party binary plug-in support in the Snap backported from the
> >>     original third-party snap.
> >>   - Snap package for release is now created and submitted on a release
> >>     pipeline.
> >>   - Release URLs added to AppStream metadata.
> >>   - We do not build GEGL with Matting Levin for Windows builds anymore
> >>     because of crashes.
> >>   - Flatpak nightly builds will now show a pseudo-release visible with
> >>     `flatpak list`, showing proper version information.
> >>   - Windows installer now has a dark mode.
> >>   - Update changelog on MS Store (MSIX) releases.
> >>   - AppImage now ships with full MIDI support.
> >>   - Make it clearer that GExiv2 0.15.0 and over are incompatible
> >>     (because of API breakage).
> >>   - Improve build to ensure that the language list (shown in
> >>     Preferences) is localized during compilation. This also means that a
> >>     build machine should be set up for localization at build time when
> >>
> >>     optional language selection is enabled.
> >>   - We now require the generic C++14 standard, and not the GNU variant
> >>     anymore.
> >>   - MSVC support added.
> >>   - Various tweaks which used to be required to make packages work as
> >>     relocatable builds were dropped since babl and GEGL now have a
> >>     relocatable option working also on Linux.
> >>   - The `man` page of GIMP binaries was updated.
> >>   - The `gimp-console` binary is now shipped in the Flatpak.
> >>   - macOS pipeline added in our Gitlab CI.
> >>   - Make sure that harfbuzz is built with libgraphite2 shaper on macOS.
> >>   - Generate file associations for macOS automatically.
> >>   - A Bash completion file was added for `gimp` and `gimp-console`
> >>     binaries.
> >>
> >> Signed-off-by: Markus Volk <f_l_k@t-online.de>
> >> Signed-off-by: Khem Raj <raj.khem@gmail.com>
> >> (cherry picked from commit f8fcc9ccf529455c992e79fc13e77dfc1a8dd9d9)
> >> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
> >> ---
> >>  .../0001-gimp-cross-compile-fix-for-bz2.patch |  30 -----
> >>  .../gimp/gimp/CVE-2025-14422.patch            |  66 -----------
> >>  .../gimp/gimp/CVE-2025-14423.patch            | 106 ------------------
> >>  .../gimp/gimp/CVE-2025-14424.patch            |  34 ------
> >>  .../gimp/gimp/CVE-2025-14425.patch            |  79 -------------
> >>  .../gimp/{gimp_3.0.6.bb => gimp_3.0.8.bb}     |   9 +-
> >>  6 files changed, 2 insertions(+), 322 deletions(-)
> >>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch
> >>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch
> >>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch
> >>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch
> >>  delete mode 100644 meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch
> >>  rename meta-gnome/recipes-gimp/gimp/{gimp_3.0.6.bb => gimp_3.0.8.bb} (92%)
> >>
> >> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch b/meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch
> >> deleted file mode 100644
> >> index 380e425f25..0000000000
> >> --- a/meta-gnome/recipes-gimp/gimp/gimp/0001-gimp-cross-compile-fix-for-bz2.patch
> >> +++ /dev/null
> >> @@ -1,30 +0,0 @@
> >> -From a7e40e19d17404cf5ec4135fc1becd5a90f5e1e1 Mon Sep 17 00:00:00 2001
> >> -From: Markus Volk <f_l_k@t-online.de>
> >> -Date: Wed, 25 Dec 2024 07:27:04 +0100
> >> -Subject: [PATCH] gimp: cross-compile fix for bz2
> >> -
> >> -autotools bzip2 build does not create pkgconfig files so looking for the dependency fails.
> >> -
> >> -Signed-off-by: Markus Volk <f_l_k@t-online.de>
> >> -
> >> -Upstream-Status: Inappropriate [can probably be removed once bzip2 is built with meson or cmake]
> >> ----
> >> - meson.build | 2 +-
> >> - 1 file changed, 1 insertion(+), 1 deletion(-)
> >> -
> >> -diff --git a/meson.build b/meson.build
> >> -index 4e48f8c64c..d5dce47015 100644
> >> ---- a/meson.build
> >> -+++ b/meson.build
> >> -@@ -777,7 +777,7 @@ zlib = dependency('zlib')
> >> - zlib = dependency('zlib')
> >> -
> >> - # Compiler-provided headers can't be found in crossroads environment
> >> --if not meson.is_cross_build()
> >> -+if true
> >> -   bz2 = cc.find_library('bz2')
> >> - else
> >> -   bz2 = dependency('bzip2')
> >> ---
> >> -2.47.1
> >> -
> >> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch
> >> deleted file mode 100644
> >> index 420e013916..0000000000
> >> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14422.patch
> >> +++ /dev/null
> >> @@ -1,66 +0,0 @@
> >> -From 0a941cab81396d65a8ab547847f8c542039e214f Mon Sep 17 00:00:00 2001
> >> -From: Gyorgy Sarvari <skandigraun@gmail.com>
> >> -Date: Sun, 23 Nov 2025 16:43:51 +0000
> >> -Subject: [PATCH] plug-ins: Fix ZDI-CAN-28273
> >> -
> >> -From: Alx Sa <cmyk.student@gmail.com>
> >> -
> >> -Resolves #15286
> >> -Adds a check to the memory allocation
> >> -in pnm_load_raw () with g_size_checked_mul ()
> >> -to see if the size would go out of bounds.
> >> -If so, we don't try to allocate and load the
> >> -image.
> >> -
> >> -CVE: CVE-2025-14422
> >> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/4ff2d773d58064e6130495de498e440f4a6d5edb]
> >> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
> >> ----
> >> - plug-ins/common/file-pnm.c | 13 +++++++++++--
> >> - 1 file changed, 11 insertions(+), 2 deletions(-)
> >> -
> >> -diff --git a/plug-ins/common/file-pnm.c b/plug-ins/common/file-pnm.c
> >> -index 32a33a4..9d349e9 100644
> >> ---- a/plug-ins/common/file-pnm.c
> >> -+++ b/plug-ins/common/file-pnm.c
> >> -@@ -674,7 +674,7 @@ load_image (GFile   *file,
> >> -             GError **error)
> >> - {
> >> -   GInputStream    *input;
> >> --  GeglBuffer      *buffer;
> >> -+  GeglBuffer      *buffer    = NULL;
> >> -   GimpImage * volatile image = NULL;
> >> -   GimpLayer       *layer;
> >> -   char             buf[BUFLEN + 4];  /* buffer for random things like scanning */
> >> -@@ -708,6 +708,9 @@ load_image (GFile   *file,
> >> -       g_object_unref (input);
> >> -       g_free (pnminfo);
> >> -
> >> -+      if (buffer)
> >> -+        g_object_unref (buffer);
> >> -+
> >> -       if (image)
> >> -         gimp_image_delete (image);
> >> -
> >> -@@ -1060,6 +1063,7 @@ pnm_load_raw (PNMScanner *scan,
> >> -   const Babl   *format = NULL;
> >> -   gint          bpc;
> >> -   guchar       *data, *d;
> >> -+  gsize         data_size;
> >> -   gushort      *s;
> >> -   gint          x, y, i;
> >> -   gint          start, end, scanlines;
> >> -@@ -1070,7 +1074,12 @@ pnm_load_raw (PNMScanner *scan,
> >> -     bpc = 1;
> >> -
> >> -   /* No overflow as long as gimp_tile_height() < 1365 = 2^(31 - 18) / 6 */
> >> --  data = g_new (guchar, gimp_tile_height () * info->xres * info->np * bpc);
> >> -+  if (! g_size_checked_mul (&data_size, gimp_tile_height (), info->xres) ||
> >> -+      ! g_size_checked_mul (&data_size, data_size, info->np)             ||
> >> -+      ! g_size_checked_mul (&data_size, data_size, bpc))
> >> -+    CHECK_FOR_ERROR (FALSE, info->jmpbuf, _("Unsupported maximum value."));
> >> -+
> >> -+  data = g_new (guchar, data_size);
> >> -
> >> -   input = pnmscanner_input (scan);
> >> -
> >> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch
> >> deleted file mode 100644
> >> index 50a0adfe89..0000000000
> >> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14423.patch
> >> +++ /dev/null
> >> @@ -1,106 +0,0 @@
> >> -From a83e8c4ad8ffbce40aa9f9a0f49880e802ef7da1 Mon Sep 17 00:00:00 2001
> >> -From: Gyorgy Sarvari <skandigraun@gmail.com>
> >> -Date: Sun, 23 Nov 2025 04:22:49 +0000
> >> -Subject: [PATCH] plug-ins: Fix ZDI-CAN-28311
> >> -
> >> -From: Alx Sa <cmyk.student@gmail.com>
> >> -
> >> -Resolves #15292
> >> -The IFF specification states that EHB format images
> >> -have exactly 32 colors in their palette. However, it
> >> -is possible for images in the wild to place an incorrect
> >> -palette size. This patch checks for this, and either limits
> >> -the palette size or breaks accordingly.
> >> -
> >> -CVE: CVE-2025-14423
> >> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/481cdbbb97746be1145ec3a633c567a68633c521]
> >> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
> >> ----
> >> - plug-ins/common/file-iff.c | 32 ++++++++++++++++++++++----------
> >> - 1 file changed, 22 insertions(+), 10 deletions(-)
> >> -
> >> -diff --git a/plug-ins/common/file-iff.c b/plug-ins/common/file-iff.c
> >> -index d144a96..f087947 100644
> >> ---- a/plug-ins/common/file-iff.c
> >> -+++ b/plug-ins/common/file-iff.c
> >> -@@ -337,7 +337,7 @@ load_image (GFile        *file,
> >> -       width      = bitMapHeader->w;
> >> -       height     = bitMapHeader->h;
> >> -       nPlanes    = bitMapHeader->nPlanes;
> >> --      row_length = (width + 15) / 16;
> >> -+      row_length = ((width + 15) / 16) * 2;
> >> -       pixel_size = nPlanes / 8;
> >> -       aspect_x   = bitMapHeader->xAspect;
> >> -       aspect_y   = bitMapHeader->yAspect;
> >> -@@ -375,6 +375,18 @@ load_image (GFile        *file,
> >> -             {
> >> -               /* EHB mode adds 32 more colors. Each are half the RGB values
> >> -                * of the first 32 colors */
> >> -+              if (palette_size < 32)
> >> -+                {
> >> -+                  g_set_error (error, G_FILE_ERROR,
> >> -+                               g_file_error_from_errno (errno),
> >> -+                               _("Invalid ILBM colormap size"));
> >> -+                  return NULL;
> >> -+                }
> >> -+              else if (palette_size > 32)
> >> -+                {
> >> -+                  palette_size = 32;
> >> -+                }
> >> -+
> >> -               for (gint j = 0; j < palette_size * 2; j++)
> >> -                 {
> >> -                   gint offset_index = j + 32;
> >> -@@ -386,7 +398,7 @@ load_image (GFile        *file,
> >> -                   gimp_cmap[offset_index * 3 + 2] =
> >> -                     colorMap->colorRegister[j].blue / 2;
> >> -                 }
> >> --              /* EHB mode always has 64 colors */
> >> -+              /* EHB mode always has 64 colors in total */
> >> -               palette_size = 64;
> >> -             }
> >> -         }
> >> -@@ -447,7 +459,7 @@ load_image (GFile        *file,
> >> -         {
> >> -           guchar *pixel_row;
> >> -
> >> --          pixel_row = g_malloc (width * pixel_size * sizeof (guchar));
> >> -+          pixel_row = g_malloc0 (width * pixel_size);
> >> -
> >> -           /* PBM uses one byte per pixel index */
> >> -           if (ILBM_imageIsPBM (true_image))
> >> -@@ -459,7 +471,7 @@ load_image (GFile        *file,
> >> -           else
> >> -             deleave_rgb_row (bitplanes, pixel_row, width, nPlanes, pixel_size);
> >> -
> >> --          bitplanes += (row_length * 2 * nPlanes);
> >> -+          bitplanes += (row_length * nPlanes);
> >> -
> >> -           gegl_buffer_set (buffer, GEGL_RECTANGLE (0, y_height, width, 1), 0,
> >> -                            NULL, pixel_row, GEGL_AUTO_ROWSTRIDE);
> >> -@@ -528,7 +540,7 @@ deleave_ham_row (const guchar *gimp_cmap,
> >> -   /* Deleave rows */
> >> -   for (gint i = 0; i < row_length; i++)
> >> -     {
> >> --      for (gint j = 0; j < 8; j++)
> >> -+      for (gint j = 0; j < nPlanes; j++)
> >> -         {
> >> -           guint8 bitmask = (1 << (8 - j)) - (1 << (7 - j));
> >> -           guint8 control = 0;
> >> -@@ -590,11 +602,11 @@ deleave_ham_row (const guchar *gimp_cmap,
> >> - }
> >> -
> >> - static void
> >> --deleave_rgb_row (IFF_UByte  *bitplanes,
> >> --                     guchar *pixel_row,
> >> --                     gint    width,
> >> --                     gint    nPlanes,
> >> --                     gint    pixel_size)
> >> -+deleave_rgb_row (IFF_UByte *bitplanes,
> >> -+                 guchar    *pixel_row,
> >> -+                 gint       width,
> >> -+                 gint       nPlanes,
> >> -+                 gint       pixel_size)
> >> - {
> >> -   gint row_length    = ((width + 15) / 16) * 2;
> >> -   gint current_pixel = 0;
> >> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch
> >> deleted file mode 100644
> >> index e7821d3109..0000000000
> >> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14424.patch
> >> +++ /dev/null
> >> @@ -1,34 +0,0 @@
> >> -From d30875b606085316b1cb7ac1da0d26e5bac0cf2c Mon Sep 17 00:00:00 2001
> >> -From: Gyorgy Sarvari <skandigraun@gmail.com>
> >> -Date: Thu, 13 Nov 2025 18:26:51 -0500
> >> -Subject: [PATCH] app: fix #15288 crash when loading malformed xcf
> >> -
> >> -From: Jacob Boerema <jgboerema@gmail.com>
> >> -
> >> -ZDI-CAN-28376 vulnerability
> >> -
> >> -Add extra tests to not crash on a NULL g_class.
> >> -
> >> -CVE: CVE-2025-14424
> >> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/5cc55d078b7fba995cef77d195fac325ee288ddd]
> >> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
> >> ----
> >> - app/core/gimpitemlist.c | 5 ++++-
> >> - 1 file changed, 4 insertions(+), 1 deletion(-)
> >> -
> >> -diff --git a/app/core/gimpitemlist.c b/app/core/gimpitemlist.c
> >> -index 6473938..a431519 100644
> >> ---- a/app/core/gimpitemlist.c
> >> -+++ b/app/core/gimpitemlist.c
> >> -@@ -345,7 +345,10 @@ gimp_item_list_named_new (GimpImage   *image,
> >> -   g_return_val_if_fail (GIMP_IS_IMAGE (image), NULL);
> >> -
> >> -   for (iter = items; iter; iter = iter->next)
> >> --    g_return_val_if_fail (g_type_is_a (G_OBJECT_TYPE (iter->data), item_type), NULL);
> >> -+    {
> >> -+      g_return_val_if_fail (iter->data && ((GTypeInstance*) (iter->data))->g_class, NULL);
> >> -+      g_return_val_if_fail (g_type_is_a (G_OBJECT_TYPE (iter->data), item_type), NULL);
> >> -+    }
> >> -
> >> -   if (! items)
> >> -     {
> >> diff --git a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch b/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch
> >> deleted file mode 100644
> >> index 44e9587570..0000000000
> >> --- a/meta-gnome/recipes-gimp/gimp/gimp/CVE-2025-14425.patch
> >> +++ /dev/null
> >> @@ -1,79 +0,0 @@
> >> -From 042e27792026460badbe49664c02fe181e95cb2b Mon Sep 17 00:00:00 2001
> >> -From: Gyorgy Sarvari <skandigraun@gmail.com>
> >> -Date: Wed, 12 Nov 2025 13:25:44 +0000
> >> -Subject: [PATCH] plug-ins: Mitigate ZDI-CAN-28248 for JP2 images
> >> -
> >> -From: Alx Sa <cmyk.student@gmail.com>
> >> -
> >> -Resolves #15285
> >> -Per the report, it's possible to exceed the size of the pixel buffer
> >> -with a high precision_scaled value, as we size it to the width * bpp.
> >> -This patch includes precision_scaled in the allocation calculation.
> >> -It also adds a g_size_checked_mul () check to ensure there's no
> >> -overflow, and moves the pixel and buffer memory freeing to occur
> >> -in the out section so that it always runs even on failure.
> >> -
> >> -CVE: CVE-2025-14425
> >> -Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/gimp/-/commit/cd1c88a0364ad1444c06536731972a99bd8643fd]
> >> -Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
> >> ----
> >> - plug-ins/common/file-jp2-load.c | 23 ++++++++++++++++-------
> >> - 1 file changed, 16 insertions(+), 7 deletions(-)
> >> -
> >> -diff --git a/plug-ins/common/file-jp2-load.c b/plug-ins/common/file-jp2-load.c
> >> -index 064b616..604313a 100644
> >> ---- a/plug-ins/common/file-jp2-load.c
> >> -+++ b/plug-ins/common/file-jp2-load.c
> >> -@@ -1045,14 +1045,15 @@ load_image (GimpProcedure     *procedure,
> >> -   GimpColorProfile    *profile    = NULL;
> >> -   GimpImage           *gimp_image = NULL;
> >> -   GimpLayer           *layer;
> >> -+  GeglBuffer          *buffer     = NULL;
> >> -+  guchar              *pixels     = NULL;
> >> -+  gsize                pixels_size;
> >> -   GimpImageType        image_type;
> >> -   GimpImageBaseType    base_type;
> >> -   gint                 width;
> >> -   gint                 height;
> >> -   gint                 num_components;
> >> --  GeglBuffer          *buffer;
> >> -   gint                 i, j, k, it;
> >> --  guchar              *pixels;
> >> -   const Babl          *file_format;
> >> -   gint                 bpp;
> >> -   GimpPrecision        image_precision;
> >> -@@ -1318,7 +1319,15 @@ load_image (GimpProcedure     *procedure,
> >> -   bpp = babl_format_get_bytes_per_pixel (file_format);
> >> -
> >> -   buffer = gimp_drawable_get_buffer (GIMP_DRAWABLE (layer));
> >> --  pixels = g_new0 (guchar, width * bpp);
> >> -+
> >> -+  if (! g_size_checked_mul (&pixels_size, width, (bpp * (precision_scaled / 8))))
> >> -+    {
> >> -+      g_set_error (error, GIMP_PLUG_IN_ERROR, 0,
> >> -+                   _("Defined row size is too large in JP2 image '%s'."),
> >> -+                   gimp_file_get_utf8_name (file));
> >> -+      goto out;
> >> -+    }
> >> -+  pixels = g_new0 (guchar, pixels_size);
> >> -
> >> -   for (i = 0; i < height; i++)
> >> -     {
> >> -@@ -1344,13 +1353,13 @@ load_image (GimpProcedure     *procedure,
> >> -         gegl_buffer_set (buffer, GEGL_RECTANGLE (0, i, width, 1), 0,
> >> -                          file_format, pixels, GEGL_AUTO_ROWSTRIDE);
> >> -     }
> >> --
> >> --  g_free (pixels);
> >> --
> >> --  g_object_unref (buffer);
> >> -   gimp_progress_update (1.0);
> >> -
> >> -  out:
> >> -+  if (pixels)
> >> -+    g_free (pixels);
> >> -+  if (buffer)
> >> -+    g_object_unref (buffer);
> >> -   if (profile)
> >> -     g_object_unref (profile);
> >> -   if (image)
> >> diff --git a/meta-gnome/recipes-gimp/gimp/gimp_3.0.6.bb b/meta-gnome/recipes-gimp/gimp/gimp_3.0.8.bb
> >> similarity index 92%
> >> rename from meta-gnome/recipes-gimp/gimp/gimp_3.0.6.bb
> >> rename to meta-gnome/recipes-gimp/gimp/gimp_3.0.8.bb
> >> index fa192555bc..a5e892c508 100644
> >> --- a/meta-gnome/recipes-gimp/gimp/gimp_3.0.6.bb
> >> +++ b/meta-gnome/recipes-gimp/gimp/gimp_3.0.8.bb
> >> @@ -46,7 +46,7 @@ DEPENDS:append:libc-musl = " libexecinfo"
> >>
> >>  LDFLAGS:append:libc-musl = " -lexecinfo"
> >>
> >> -inherit meson gtk-icon-cache mime-xdg pkgconfig gettext gobject-introspection vala
> >> +inherit meson gtk-icon-cache mime-xdg pkgconfig gettext gobject-introspection vala bash-completion
> >>
> >>  GIR_MESON_OPTION = 'can-crosscompile-gir'
> >>  VALA_MESON_OPTION = "vala"
> >> @@ -57,16 +57,11 @@ GIDOCGEN_MESON_ENABLE_FLAG = "enabled"
> >>  GIDOCGEN_MESON_DISABLE_FLAG = "disabled"
> >>
> >>  SRC_URI = "https://download.gimp.org/gimp/v3.0/${BP}.tar.xz \
> >> -           file://0001-gimp-cross-compile-fix-for-bz2.patch \
> >>             file://0002-meson.build-reproducibility-fix.patch \
> >>             file://0001-meson.build-dont-check-for-lgi.patch \
> >>             file://0001-meson.build-require-iso-codes-native.patch \
> >> -           file://CVE-2025-14422.patch \
> >> -           file://CVE-2025-14423.patch \
> >> -           file://CVE-2025-14424.patch \
> >> -           file://CVE-2025-14425.patch \
> >>             "
> >> -SRC_URI[sha256sum] = "246c225383c72ef9f0dc7703b7d707084bbf177bd2900e94ce466a62862e296b"
> >> +SRC_URI[sha256sum] = "feb498acc01b26827cff1ff95aa8fb82cdd6a60d7abf773cfcd19abeafca3386"
> >>
> >>  PACKAGECONFIG[aa] = "-Daa=enabled,-Daa=disabled,aalib"
> >>  PACKAGECONFIG[alsa] = "-Dalsa=enabled,-Dalsa=disabled,alsa-lib"
> >>
> >> -=-=-=-=-=-=-=-=-=-=-=-
> >> Links: You receive all messages sent to this group.
> >> View/Reply Online (#124078): https://lists.openembedded.org/g/openembedded-devel/message/124078
> >> Mute This Topic: https://lists.openembedded.org/mt/117604891/3619737
> >> Group Owner: openembedded-devel+owner@lists.openembedded.org
> >> Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [ankur.tyagi85@gmail.com]
> >> -=-=-=-=-=-=-=-=-=-=-=-
> >>
>