| Package | gdk-pixbuf |
|---|---|
| Version | 2.36.5-2+deb9u4 (stretch), 2.38.1+dfsg-1+deb10u2 (buster) |
| Related CVEs | CVE-2025-7345 |
A vulnerability was found in gdk-pixbuf, a library used by many GTK applications to load graphical assets. When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding.
For Debian 10 buster, these problems have been fixed in version 2.38.1+dfsg-1+deb10u2.
For Debian 9 stretch, these problems have been fixed in version 2.36.5-2+deb9u4.
We recommend that you upgrade your gdk-pixbuf packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.