Red Hat Product Errata RHSA-2026:11325 - Security Advisory Issued: 2026-04-28 Updated: 2026-04-28 RHSA-2026:11325 - Security Advisory Overview Updated Packages Synopsis Important: gdk-pixbuf2 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for gdk-pixbuf2 is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The gdk-pixbuf2 packages provide an image loading library that can be extended by loadable modules for new image formats. It is used by toolkits such as GTK+ or clutter. Security Fix(es): gdk-pixbuf: gdk-pixbuf: Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image (CVE-2026-5201) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 x86_64 Fixes BZ - 2453291 - CVE-2026-5201 gdk-pixbuf: gdk-pixbuf: Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image CVEs CVE-2026-5201 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 SRPM gdk-pixbuf2-2.42.12-4.el10_0.4.src.rpm SHA-256: e3e5ff4d037f013646cbbe7db7546048f2f1720a5a56120f49e295ea3577e22d x86_64 gdk-pixbuf2-2.42.12-4.el10_0.4.x86_64.rpm SHA-256: 42baa361e5138c353fd3848e25d84be6e4f7f36a7eb356aa2521473064a63b9a gdk-pixbuf2-debuginfo-2.42.12-4.el10_0.4.x86_64.rpm SHA-256: 7b0008b6c4c3cd3b6f1807f9d0b4b195f05cd867896cd3ac64bf15ac360c5ed2 gdk-pixbuf2-debugsource-2.42.12-4.el10_0.4.x86_64.rpm SHA-256: 0b39b0ac34d68b87d2393f419e9fc5fdb19fbfc75c097d183e8903ec52d5f42d gdk-pixbuf2-devel-2.42.12-4.el10_0.4.x86_64.rpm SHA-256: b0fe973c27290fcdd1223ad01d210f82a69601c909d036ba63132fbd86bbb42e gdk-pixbuf2-devel-debuginfo-2.42.12-4.el10_0.4.x86_64.rpm SHA-256: 10a6ab6252887934d76af1355d0edc3f8e5ec465d5babdc65d0763c8bf84208f gdk-pixbuf2-modules-2.42.12-4.el10_0.4.x86_64.rpm SHA-256: c6bf2fba626f982b4fa1d71f1e54b0e5e9f437e202d8651d8060b12d2906d876 gdk-pixbuf2-modules-debuginfo-2.42.12-4.el10_0.4.x86_64.rpm SHA-256: 415bebd3048011d8517d7e19d6f37ed5be8572ee2c9bf7439f4d06ef05f440d9 gdk-pixbuf2-tests-debuginfo-2.42.12-4.el10_0.4.x86_64.rpm SHA-256: 750eb21fdcbd8fbe95757816d93e128d81444815ac927a112c795e5f6d26cc22 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 SRPM gdk-pixbuf2-2.42.12-4.el10_0.4.src.rpm SHA-256: e3e5ff4d037f013646cbbe7db7546048f2f1720a5a56120f49e295ea3577e22d s390x gdk-pixbuf2-2.42.12-4.el10_0.4.s390x.rpm SHA-256: a72000b7966c7e48cace0c9926f28d05c531936cac9dc43a064a5369582f4ef5 gdk-pixbuf2-debuginfo-2.42.12-4.el10_0.4.s390x.rpm SHA-256: 55dd6c020aa9a52375e80ff5640f12c76f1b4040225aff7b44b5c60adb8e8d72 gdk-pixbuf2-debugsource-2.42.12-4.el10_0.4.s390x.rpm SHA-256: d46edfcdd365145d2109f35a66b4cc128ae34f0cdb10515836bfa0702f3084a1 gdk-pixbuf2-devel-2.42.12-4.el10_0.4.s390x.rpm SHA-256: b366cb16908c862eb993ba72c97165d1c7266536ec5408458fab68ea4d74fc9d gdk-pixbuf2-devel-debuginfo-2.42.12-4.el10_0.4.s390x.rpm SHA-256: 3637a90ec30d093782b009729ffe85002e6270268a6df84c9f1e4b48c7d31f33 gdk-pixbuf2-modules-2.42.12-4.el10_0.4.s390x.rpm SHA-256: 392c9ad96b8febb2dec5cd9ad3592c9ecc29b59a30dadc747148722a66b41fc6 gdk-pixbuf2-modules-debuginfo-2.42.12-4.el10_0.4.s390x.rpm SHA-256: bf8769f18ce8643a3bb70212641a75f9363f5814284b5fe3a6ef89aa48204b79 gdk-pixbuf2-tests-debuginfo-2.42.12-4.el10_0.4.s390x.rpm SHA-256: 453487d1f8ccbe9abd23013fa9f7f74317e3b9467fc7b79db57b5d02f3466080 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 SRPM gdk-pixbuf2-2.42.12-4.el10_0.4.src.rpm SHA-256: e3e5ff4d037f013646cbbe7db7546048f2f1720a5a56120f49e295ea3577e22d ppc64le gdk-pixbuf2-2.42.12-4.el10_0.4.ppc64le.rpm SHA-256: 5ea55a9844c8d28d23ef02330e8cac170e6c1097f0f89d32019d9c992080ac19 gdk-pixbuf2-debuginfo-2.42.12-4.el10_0.4.ppc64le.rpm SHA-256: 5415201f187102a5f6deeed11f98bd14f85867788dfbc92b89ab088a44736a4d gdk-pixbuf2-debugsource-2.42.12-4.el10_0.4.ppc64le.rpm SHA-256: e3daddf55e93ca944ddf1bca1afb90f95951ed89085d338ae3f45e843579ce8b gdk-pixbuf2-devel-2.42.12-4.el10_0.4.ppc64le.rpm SHA-256: c693f721bf2a8362c726822e8f5ba869faecaee190d863f66c5f956b882c5078 gdk-pixbuf2-devel-debuginfo-2.42.12-4.el10_0.4.ppc64le.rpm SHA-256: f49ce9d07a4d773d7ca4199ed34050923f3863c368f1737bea4211b37dc336e1 gdk-pixbuf2-modules-2.42.12-4.el10_0.4.ppc64le.rpm SHA-256: 5c4d41c2b23f0d2d6d7230042e63fcfcbb20c82f1311e78967b413f73ff3c107 gdk-pixbuf2-modules-debuginfo-2.42.12-4.el10_0.4.ppc64le.rpm SHA-256: fa9c4c0331e35fc92d6b2085509a82b57d892e6c1b6572f2d0596a727ea53e5b gdk-pixbuf2-tests-debuginfo-2.42.12-4.el10_0.4.ppc64le.rpm SHA-256: 049bf9c79f4cbd3f2809246fe35760ffb415daa9ef7ac3198918b409ad4fd056 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 SRPM gdk-pixbuf2-2.42.12-4.el10_0.4.src.rpm SHA-256: e3e5ff4d037f013646cbbe7db7546048f2f1720a5a56120f49e295ea3577e22d aarch64 gdk-pixbuf2-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: bb082fd9b897a9362397f32307076883b9fbb4dc1073390c7ec0aeb45c718381 gdk-pixbuf2-debuginfo-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: 9e8f3855b56f128b12b44f1b5cc690aaa6168541f5f81982d8668fc69c0345b4 gdk-pixbuf2-debugsource-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: a5350228dd1d779a8a0fb98c33d6f6ff9935c3974700b47ec6a8d556725b44ec gdk-pixbuf2-devel-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: 3a8dc8d969afcabc15923e95a9d35c37bd85449157b23e9b4523e6aae22a57f1 gdk-pixbuf2-devel-debuginfo-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: 5a3f38763f7d72db85be5d7b813f666501ae6337b2b044c418442eedafc74757 gdk-pixbuf2-modules-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: f708b8392642c61197c0d9d986fcd62931ba8df23cad602b2d8171a09d13102b gdk-pixbuf2-modules-debuginfo-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: 90a61be9903a01d25381dfd8a43bc725ba1bde6786bf2e5bda6a3fc5d3cd7c65 gdk-pixbuf2-tests-debuginfo-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: c47966b8670a70f48095422c5dbb4ba83c5d130edef5c59b68074df89bb04ad0 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 SRPM gdk-pixbuf2-2.42.12-4.el10_0.4.src.rpm SHA-256: e3e5ff4d037f013646cbbe7db7546048f2f1720a5a56120f49e295ea3577e22d aarch64 gdk-pixbuf2-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: bb082fd9b897a9362397f32307076883b9fbb4dc1073390c7ec0aeb45c718381 gdk-pixbuf2-debuginfo-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: 9e8f3855b56f128b12b44f1b5cc690aaa6168541f5f81982d8668fc69c0345b4 gdk-pixbuf2-debugsource-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: a5350228dd1d779a8a0fb98c33d6f6ff9935c3974700b47ec6a8d556725b44ec gdk-pixbuf2-devel-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: 3a8dc8d969afcabc15923e95a9d35c37bd85449157b23e9b4523e6aae22a57f1 gdk-pixbuf2-devel-debuginfo-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: 5a3f38763f7d72db85be5d7b813f666501ae6337b2b044c418442eedafc74757 gdk-pixbuf2-modules-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: f708b8392642c61197c0d9d986fcd62931ba8df23cad602b2d8171a09d13102b gdk-pixbuf2-modules-debuginfo-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: 90a61be9903a01d25381dfd8a43bc725ba1bde6786bf2e5bda6a3fc5d3cd7c65 gdk-pixbuf2-tests-debuginfo-2.42.12-4.el10_0.4.aarch64.rpm SHA-256: c47966b8670a70f48095422c5dbb4ba83c5d130edef5c59b68074df89bb04ad0 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 SRPM gdk-pixbuf2-2.42.12-4.el10_0.4.src.rpm SHA-256: e3e5ff4d037f013646cbbe7db7546048f2f1720a5a56120f49e295ea3577e22d s390x gdk-pixbuf2-2.42.12-4.el10_0.4.s390x.rpm SHA-256: a72000b7966c7e48cace0c9926f28d05c531936cac9dc43a064a5369582f4ef5 gdk-pixbuf2-debuginfo-2.42.12-4.el10_0.4.s390x.rpm SHA-256: 55dd6c020aa9a52375e80ff5640f12c76f1b4040225aff7b44b5c60adb8e8d72 gdk-pixbuf2-debugsource-2.42.12-4.el10_0.4.s390x.rpm SHA-256: d46edfcdd365145d2109f35a66b4cc128ae34f0cdb10515836bfa0702f3084a1 gdk-pixbuf2-devel-2.42.12-4.el10_0.4.s390x.rpm SHA-256: b366cb16908c862eb993ba72c97165d1c7266536ec5408458fab68ea4d74fc9d gdk-pixbuf2-devel-debuginfo-2.42.12-4.el10_0.4.s390x.rpm SHA-256: 3637a90ec30d093782b009729ffe85002e6270268a6df84c9f1e4b48c7d31f33 gdk-pixbuf2-modules-2.42.12-4.el10_0.4.s390x.rpm SHA-256: 392c9ad96b8febb2dec5cd9ad3592c9ecc29b59a30dadc747148722a66b41fc6 gdk-pixbuf2-modules-debuginfo-2.42.12-4.el10_0.4.s390x.rpm SHA-256: bf8769f18ce8643a3bb70212641a75f9363f5814284b5fe3a6ef89aa48204b79 gdk-pixbuf2-tests-debuginfo-2.42.12-4.el10_0.4.s390x.rpm SHA-256: 453487d1f8ccbe9abd23013fa9f7f74317e3b9467fc7b79db57b5d02f3466080 Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 SRPM gdk-pixbuf2-2.42.12-4.el10_0.4.src.rpm SHA-256: e3e5ff4d037f013646cbbe7db7546048f2f1720a5a56120f49e295ea3577e22d ppc64le gdk-pixbuf2-2.42.12-4.el10_0.4.ppc64le.rpm SHA-256: 5ea55a9844c8d28d23ef02330e8cac170e6c1097f0f89d32019d9c992080ac19 gdk-