Ubuntu Security Notices USN-8156-2 USN-8156-2: GDK-PixBuf vulnerability Publication date 9 June 2026 Overview GDK-PixBuf could be made to crash or run programs if it opened a specially crafted file. Releases 20.04 LTS 18.04 LTS 16.04 LTS Open side navigation Close side navigation Packages Details Update instructions References Related notices Packages gdk-pixbuf - GDK Pixbuf library Details USN-8156-1 fixed a vulnerability in GDK-PixBuf. This update provides the corresponding update for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Original advisory details: It was discovered that GDK-PixBuf incorrectly handled certain JPEG files. An attacker could use this issue to cause GDK-PixBuf to crash, resulting in a denial of service, or possibly execute arbitrary code. USN-8156-1 fixed a vulnerability in GDK-PixBuf. This update provides the corresponding update for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Original advisory details: It was discovered that GDK-PixBuf incorrectly handled certain JPEG files. An attacker could use this issue to cause GDK-PixBuf to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions In general, a standard system update will make all the necessary changes. Learn more about how to get the fixes. The problem can be corrected by updating your system to the following package versions: Ubuntu Release Package Version 20.04 LTS focal libgdk-pixbuf2.0-0 – 2.40.0+dfsg-3ubuntu0.5+esm3 Ubuntu Pro Fix available with Ubuntu Pro . 18.04 LTS bionic libgdk-pixbuf2.0-0 – 2.36.11-2ubuntu0.1~esm3 Ubuntu Pro Fix available with Ubuntu Pro . 16.04 LTS xenial libgdk-pixbuf2.0-0 – 2.32.2-1ubuntu1.6+esm3 Ubuntu Pro Fix available with Ubuntu Pro via Legacy Support add-on. Reduce your security exposure Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines. Get Ubuntu Pro References CVE-2026-5201 CVE-2026-5201 Related notices USN-8156-1 USN-8156-1