CVE-2026-5201 in gdk-pixbuf
摘要 (英语)
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image. A remote attacker can exploit this flaw without user interaction, for example, via thumbnail generation. Successful exploitation leads to application crashes and denial of service (DoS) conditions.
负责
redhat
预定
2026-03-31
披露
2026-03-31
条目
VulDB provides additional information and datapoints for this CVE:
| 标识符 | 漏洞 | CWE | 可利用 | 对策 | CVE |
|---|---|---|---|---|---|
| 354334 | gdk-pixbuf JPEG Image Loader 内存损坏 | 122 | 未定义 | 未定义 | CVE-2026-5201 |