GNOME gThumb before 3.10.1 allows an application crash via a malformed JPEG image. Reference: https://mail.gnome.org/archives/gthumb-list/2020-September/msg00001.html
Created gthumb tracking bugs for this issue: Affects: epel-7 [bug 1984052]
Pretty sure this is the upstream patch commit: https://gitlab.gnome.org/GNOME/gthumb/-/commit/9729b8688d5d67c01deabea46ad469ec517250c5 . Please see commit message there for more details.
Upstream issue with more details and reproduction info: https://gitlab.gnome.org/GNOME/gthumb/-/issues/106
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-36427