Publishing details
Changelog
gthumb (3:3.6.2-4+deb10u1) buster; urgency=medium
* Non-maintainer upload by the LTS Team.
* CVE-2019-20326 (Closes: #948197)
A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg()
in extensions/cairo_io/cairo-image-surface-jpeg.c allows attackers to
cause a crash and potentially execute arbitrary code via a crafted JPEG
file.
* additional fix in case orientation swaps width and height
-- Thorsten Alteholz <email address hidden> Thu, 26 Aug 2021 21:03:02 +0200
Builds
Package files