Description
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image. A remote attacker can exploit this flaw without user interaction, for example, via thumbnail generation. Successful exploitation leads to application crashes and denial of service (DoS) conditions.
Problem types
Product status
0:2.42.12-4.el10_1.5 (rpm) before *
0:2.42.12-4.el10_2.5 (rpm) before *
0:2.42.12-4.el10_0.4 (rpm) before *
0:2.36.12-5.el7_9 (rpm) before *
0:2.36.12-8.el8_10 (rpm) before *
0:2.36.12-8.el8_10 (rpm) before *
0:2.36.12-7.el8_2 (rpm) before *
0:2.36.12-7.el8_4 (rpm) before *
0:2.36.12-7.el8_4 (rpm) before *
0:2.36.12-7.el8_6 (rpm) before *
0:2.36.12-7.el8_6 (rpm) before *
0:2.36.12-7.el8_6 (rpm) before *
0:2.36.12-7.el8_8 (rpm) before *
0:2.36.12-7.el8_8 (rpm) before *
0:2.42.6-6.el9_7.1 (rpm) before *
0:2.42.6-6.el9_8.1 (rpm) before *
0:2.42.6-3.el9_0.1 (rpm) before *
0:2.42.6-4.el9_2.1 (rpm) before *
0:2.42.6-5.el9_4.1 (rpm) before *
0:2.42.6-6.el9_6.1 (rpm) before *
1779223654 (rpm) before *
1779223651 (rpm) before *
1778244559 (rpm) before *
1778244531 (rpm) before *
1778274666 (rpm) before *
1778244546 (rpm) before *
Timeline
| 2026-03-31: | Reported to Red Hat. |
| 2026-03-31: | Made public. |
Credits
Red Hat would like to thank Kağan Çapar for reporting this issue.
References
lists.debian.org/debian-lts-announce/2026/04/msg00010.html
access.redhat.com/errata/RHSA-2026:10707 (RHSA-2026:10707)
access.redhat.com/errata/RHSA-2026:10708 (RHSA-2026:10708)
access.redhat.com/errata/RHSA-2026:10741 (RHSA-2026:10741)
access.redhat.com/errata/RHSA-2026:11325 (RHSA-2026:11325)
access.redhat.com/errata/RHSA-2026:11326 (RHSA-2026:11326)
access.redhat.com/errata/RHSA-2026:11327 (RHSA-2026:11327)
access.redhat.com/errata/RHSA-2026:11328 (RHSA-2026:11328)
access.redhat.com/errata/RHSA-2026:11806 (RHSA-2026:11806)
access.redhat.com/errata/RHSA-2026:12060 (RHSA-2026:12060)
access.redhat.com/errata/RHSA-2026:12061 (RHSA-2026:12061)
access.redhat.com/errata/RHSA-2026:12062 (RHSA-2026:12062)
access.redhat.com/errata/RHSA-2026:12114 (RHSA-2026:12114)
access.redhat.com/errata/RHSA-2026:12115 (RHSA-2026:12115)
access.redhat.com/errata/RHSA-2026:16008 (RHSA-2026:16008)
access.redhat.com/errata/RHSA-2026:16009 (RHSA-2026:16009)
access.redhat.com/errata/RHSA-2026:16030 (RHSA-2026:16030)
access.redhat.com/errata/RHSA-2026:16174 (RHSA-2026:16174)
access.redhat.com/errata/RHSA-2026:19127 (RHSA-2026:19127)
access.redhat.com/errata/RHSA-2026:19210 (RHSA-2026:19210)
access.redhat.com/errata/RHSA-2026:19724 (RHSA-2026:19724)
access.redhat.com/errata/RHSA-2026:19725 (RHSA-2026:19725)
access.redhat.com/security/cve/CVE-2026-5201
bugzilla.redhat.com/show_bug.cgi?id=2453291 (RHBZ#2453291)
gitlab.gnome.org/GNOME/gdk-pixbuf/-/issues/304