CVE-2026-5201
EUVD-2026-1734331.03.2026, 09:16
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image. A remote attacker can exploit this flaw without user interaction, for example, via thumbnail generation. Successful exploitation leads to application crashes and denial of service (DoS) conditions.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| gnome | gdk-pixbuf | - |
| redhat | enterprise_linux | 7.0 |
| redhat | enterprise_linux | 8.0 |
| redhat | enterprise_linux | 9.0 |
| redhat | enterprise_linux | 10.0 |
| redhat | enterprise_linux_server_aus | 8.2 |
| redhat | enterprise_linux_server_aus | 8.4 |
| redhat | enterprise_linux_server_tus | 8.8 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gdk-pixbuf |
|
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gdk-pixbuf-devel |
| ||||||||||||||||||||
| gdk-pixbuf-lang |
| ||||||||||||||||||||
| gdk-pixbuf-query-loaders |
| ||||||||||||||||||||
| gdk-pixbuf-query-loaders-32bit |
| ||||||||||||||||||||
| gdk-pixbuf-thumbnailer |
| ||||||||||||||||||||
| libgdk_pixbuf-2_0-0 |
| ||||||||||||||||||||
| libgdk_pixbuf-2_0-0-32bit |
| ||||||||||||||||||||
| typelib-1_0-GdkPixbuf-2_0 |
| ||||||||||||||||||||
| typelib-1_0-GdkPixdata-2_0 |
|
Red Hat Enterprise Linux Releases
Red Hat Product | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gdk-pixbuf2 |
| ||||||||||||||||||
| gdk-pixbuf2-devel |
| ||||||||||||||||||
| gdk-pixbuf2-modules |
| ||||||||||||||||||
| gdk-pixbuf2-xlib |
| ||||||||||||||||||
| gdk-pixbuf2-xlib-devel |
|
Amazon Linux Releases
Amazon Package | |||||
|---|---|---|---|---|---|
| gdk-pixbuf2 |
| ||||
| gdk-pixbuf2-debuginfo |
| ||||
| gdk-pixbuf2-debugsource |
| ||||
| gdk-pixbuf2-devel |
| ||||
| gdk-pixbuf2-devel-debuginfo |
| ||||
| gdk-pixbuf2-modules |
| ||||
| gdk-pixbuf2-modules-debuginfo |
| ||||
| gdk-pixbuf2-tests |
| ||||
| gdk-pixbuf2-tests-debuginfo |
|
References