Giflib contains a double-free vulnerability that is the result of a shallow copy in GifMakeSavedImage and incorrect error handling. The conditions needed to trigger this vulnerability are difficult but may be possible.
{ "binaries": [ { "binary_name": "giflib-tools", "binary_version": "5.1.9-1ubuntu0.1" }, { "binary_name": "libgif7", "binary_version": "5.1.9-1ubuntu0.1" } ] }
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-23868.json"
{ "binaries": [ { "binary_name": "giflib-tools", "binary_version": "5.1.9-2ubuntu0.1" }, { "binary_name": "libgif7", "binary_version": "5.1.9-2ubuntu0.1" } ] }
{ "binaries": [ { "binary_name": "giflib-tools", "binary_version": "5.2.2-1ubuntu1" }, { "binary_name": "libgif7", "binary_version": "5.2.2-1ubuntu1" } ] }
{ "binaries": [ { "binary_name": "giflib-tools", "binary_version": "5.2.2-1ubuntu2" }, { "binary_name": "libgif7", "binary_version": "5.2.2-1ubuntu2" } ] }
{ "binaries": [ { "binary_name": "giflib-tools", "binary_version": "5.2.2-1ubuntu3" }, { "binary_name": "libgif7", "binary_version": "5.2.2-1ubuntu3" } ] }
{ "binaries": [ { "binary_name": "giflib-tools", "binary_version": "5.1.4-0.3~16.04.1+esm1" }, { "binary_name": "libgif7", "binary_version": "5.1.4-0.3~16.04.1+esm1" } ] }
{ "binaries": [ { "binary_name": "giflib-tools", "binary_version": "5.1.4-2ubuntu0.1+esm1" }, { "binary_name": "libgif7", "binary_version": "5.1.4-2ubuntu0.1+esm1" } ] }