ГлавнаяУязвимости → CVE-2026-5201
7.5высокая

CVE-2026-5201

→ есть в БДУ: BDU:2026-04974 (на русском)
Описание (на английском; русское — в БДУ выше)

A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image. A remote attacker can exploit this flaw without user interaction, for example, via thumbnail generation. Successful exploitation leads to application crashes and denial of service (DoS) conditions.

Затрагиваемое ПО
Gnome Gdk-pixbufRedhat Enterprise linuxRedhat Enterprise linux server ausRedhat Enterprise linux server tus
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Источники
https://access.redhat.com/errata/RHSA-2026:10707https://access.redhat.com/errata/RHSA-2026:10708https://access.redhat.com/errata/RHSA-2026:10741https://access.redhat.com/errata/RHSA-2026:11325https://access.redhat.com/errata/RHSA-2026:11326https://access.redhat.com/errata/RHSA-2026:11327https://access.redhat.com/errata/RHSA-2026:11328https://access.redhat.com/errata/RHSA-2026:11806