Comment 0 for bug 1976189

[For some reason, the autoreporter wasn't opening Launchpad so I'm bugging this manually]

CVE-2019-20326 - if gThumb tries to load an image greater than Cairo's max drawing size, it will crash. This is a heap-based buffer overflow an attacker could execute harmful code.

Fysac on GitHub made a good writeup about this - https://github.com/Fysac/CVE-2019-20326

I have a patch for 20.04 Focal.

ProblemType: Bug
DistroRelease: Ubuntu 20.04
Package: gthumb 3:3.8.0-2.1build1
ProcVersionSignature: Ubuntu 5.13.0-46.51~20.04.1-generic 5.13.19
Uname: Linux 5.13.0-46-generic x86_64
ApportVersion: 2.20.11-0ubuntu27.24
Architecture: amd64
CasperMD5CheckResult: skip
CurrentDesktop: X-Cinnamon
Date: Sun May 29 12:20:58 2022
InstallationDate: Installed on 2021-11-24 (185 days ago)
InstallationMedia: ubuntucinnamonremix "@BASECODENAME" (20210826)
SourcePackage: gthumb
UpgradeStatus: No upgrade log present (probably fresh install)