VDB
RHSA-2026%3A8885
RHSA-2026%3A8885
PUBLISHED
CVSS 7 HIGH
Red Hat Security Advisory: giflib security update
Risk Scores
CVSS 3.1
7
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat:rhel_eus_long_life:8.4::appstream | giflib-utils-debuginfo | 0, 0 |
| Red Hat:rhel_eus_long_life:8.4::appstream | giflib | 0, 0 |
| Red Hat:rhel_eus_long_life:8.4::appstream | giflib-debugsource | 0, 0 |
| Red Hat:rhel_eus_long_life:8.4::appstream | giflib-debuginfo | 0, 0 |
| Red Hat:rhel_aus:8.4::appstream | giflib-debugsource | 0, 0 |
| Red Hat:rhel_aus:8.4::appstream | giflib | 0, 0 |
| Red Hat:rhel_aus:8.4::appstream | giflib-utils-debuginfo | 0, 0 |
| Red Hat:rhel_aus:8.4::appstream | giflib-debuginfo | 0, 0 |
Timeline
- Apr 20, 2026 CVE Published
- May 1, 2026 Distribution Patch
- May 1, 2026 Distribution Patch
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 14, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2026:8885 advisory
- https://access.redhat.com/security/updates/classification/#important article
- https://bugzilla.redhat.com/show_bug.cgi?id=2446207 report
- https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_8885.json advisory
- https://access.redhat.com/security/cve/CVE-2026-23868 report
- https://www.cve.org/CVERecord?id=CVE-2026-23868 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-23868 advisory
- https://sourceforge.net/p/giflib/code/ci/f5b7267aed3665ef025c13823e454170d031c106/tree/gifalloc.c?diff=5146815377b7395944cb683a08c43eee3f631eb7 article
- https://www.facebook.com/security/advisories/cve-2026-23868 article