gimp-3.0.4

[Xi Ruoyao]

New patch version.

[thomas]

Overview of Changes from GIMP 3.0.2 to GIMP 3.0.4 =================================================

Core:

• Make maximum radius for generated brushes consistent across codebase.
• Use NDE filter name for undo history.
• Module loading improved to be better cross-platform (in particular on macOS both .so and .dylib modules are supported).
• Code compliant with GCC 15 (C23).
• Filter size updated when its drawable is rotated.
• Font loading (at startup) optimized.
• Set the proper program name for KDE/Wayland to map the process to the correct desktop file.
• "windows-display-*" are hidden from the Shortcuts dialog (they are not meant to be remapped).
• Editing non-destructive effects now triggers undo steps.
• When migrating from GIMP 2.x to GIMP 3, shortcuts for actions "edit-paste-as-new-layer*" are now converted to "edit-paste-merged*" (and not "edit-paste*" anymore which was confusing and counter-productive).

Graphical User Interface:

• Highlight selected device in GimpDeviceStatus.
• Various theme leak fixes.
• UX improvement: GimpViewableDialog (e.g. Fill/Stroke path and more) now has "OK" as default response.
• Icon size settings now also applying to Move and Transform icon boxes.
• Commit hash is now shown in About dialog in all non-release builds (i.e. even in stable series, when we are in-between releases).
• Hide Force slider for Pencil Tool (rather than just making it insensitive).
• Define merged titlebar icon colors.
• Keep menubar color consistent when out of focus.
• We don't show Fx icon for tool-based filters.
• Updated splash without micro version in it.
• Removed size restrictions on Display Filters.
• Don't show hidden tools on toolbox tooltips.
• Fix "Keep above" Window Manager hint.
• Multi-Window mode on Windows: dock windows' title bars now adapt to the Windows system theme colors too.
• Show palette name in Palette Color Selector.

Tools:

• MyPaint Brush: have consistent options layout compared to other paint tools.
• Scissors Select Tool: close the curve on Enter, similar to the Path tool.
• Path Tool: connect path on click in design mode.

Plug-ins:

• Restore GUI to Difference Clouds script. This had been lost since GIMP 2.8!
• Fixes in various file format support, such as: DDS, SVG, TIFF, PSD, BMP, ICO…
• Screenshot dropdowns replaced by radio buttons, as part of a new UX decision that choice settings with 2 or 3 choices should be dropdown (faster 1-click access), unless there are a lot more settings making the dialog too crowded already.

PDB:

• Make "gimp-plug-ins-query" public again (yet still not available in libgimp).

Build:

• Windows Installer:
  • Make the installer aware of Install, Reinstall and Update modes.
  • Add Repair mode to Windows installer: in particular we can now fix installations when the previous install directory cannot be accessed anymore.
  • The feature to delete the config folder on Windows uninstall will now make a backup on the Desktop first (allowing people to delete it themselves, move it, or even restore it later if needed).
  • Uninstalling while GIMP is running is made impossible (among other issues, it was causing partial uninstallation).
  • Downgrading is only possible by uninstalling first.
  • Development warning is shown in dev build of stable series too.
  • Add fractional scaling support to Installer welcome image.
  • Restore points now have a timeout to prevent stuckness.
• Our AppImage won't ship debug symbols anymore. Better debugging can be set with: export DEBUGINFOD_URLS="​https://debuginfod.debian.net"
• Windows builds:
  • Ship babl/GEGL and libgimp headers, static libs and pkg-config files for plug-in developers.
  • Dedicated file icon for XCF files.
  • Generate native .pdb CodeView symbols on Windows (smaller debug data files, usable by MSIX and better debugging ability), except on x86 (32-bit).
• Crossbuilds are dropped from CI.
• Shell scripts used in the meson build are ported to Python (more portable and much faster on some platforms, in particular Windows).
• Some build scripts were moved around for reorganization.
• Depency requirement bumped:
  • babl 0.1.114
  • GEGL 0.4.62
• New "Inputs" feature for simpler Gitlab pipelines running.
• Some in-repository documentation was cleaned up.

[thomas]

Fixed in [5da67ef49c]

[Douglas R. Reno]

While I was going through the GNOME Security wiki to make sure I have all of the details for security advisories, I found ​https://gitlab.gnome.org/GNOME/gimp/-/issues/13910 ...

It was fixed in this release, and is a remote code execution vulnerability. I downloaded the POC on my 12.3 system and tried it on the version of GIMP we shipped (which was 3.0.0-RC3). I get "/usr/lib/gimp/3.0/plug-ins/file-ico/file-ico: fatal error: Segmentation fault" , which means BLFS 12.3 is vulnerable to the issue. GIMP complained that it's internal state was corrupted as well

[Douglas R. Reno]

Confirmed that GIMP 3.0.4 fixes the issue. BLFS 12.3 users will need to update gegl and babl, will make sure that is mentioned in the advisory.

[Douglas R. Reno]

SA-12.3-032 issued