Description
Giflib contains a double-free vulnerability that is the result of a shallow copy in GifMakeSavedImage and incorrect error handling. The conditions needed to trigger this vulnerability are difficult but may be possible.
Problem types
Product status
5.0.0 (semver)
References
access.redhat.com/security/cve/CVE-2026-23868
bugzilla.redhat.com/show_bug.cgi?id=2446207 (RHBZ#2446207)
security.access.redhat.com/...2/vex/2026/cve-2026-23868.json
access.redhat.com/errata/RHSA-2026:8883
access.redhat.com/errata/RHSA-2026:9290
access.redhat.com/errata/RHSA-2026:8858
access.redhat.com/errata/RHSA-2026:19154
access.redhat.com/errata/RHSA-2026:8861
access.redhat.com/errata/RHSA-2026:8884
access.redhat.com/errata/RHSA-2026:8885
access.redhat.com/errata/RHSA-2026:8887
access.redhat.com/errata/RHSA-2026:8886
access.redhat.com/errata/RHSA-2026:9291
access.redhat.com/errata/RHSA-2026:9292
access.redhat.com/errata/RHSA-2026:9295
access.redhat.com/errata/RHSA-2026:9294
access.redhat.com/errata/RHSA-2026:8859
access.redhat.com/errata/RHSA-2026:19367
access.redhat.com/errata/RHSA-2026:25096
access.redhat.com/errata/RHSA-2026:19724
access.redhat.com/errata/RHSA-2026:19725
access.redhat.com/errata/RHSA-2026:16008
access.redhat.com/errata/RHSA-2026:16030
access.redhat.com/errata/RHSA-2026:16009
access.redhat.com/errata/RHSA-2026:16174
www.facebook.com/security/advisories/cve-2026-23868
sourceforge.net/...=5146815377b7395944cb683a08c43eee3f631eb7