The GD Graphics Library (aka LibGD) 2.2.5 has a double free in the gdImage*Ptr() functions in gd_gif_out.c, gd_jpeg.c, and gd_wbmp.c. NOTE: PHP is unaffected.
Created gd tracking bugs for this issue:
Affects: fedora-all [bug 1671391]
Created libwmf tracking bugs for this issue:
Affects: fedora-all [bug 1671392]
Basically a double-free in the gd library when handling gdImage Pointers. Can result in application crash. However you need need the gdImage*Ctx (where * is git, Jpeg or Wbmp) to fail.
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2019:2722 https://access.redhat.com/errata/RHSA-2019:2722
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):