Integer overflow in io-ico.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (segmentation fault and application crash) via a crafted image entry offset in an ICO file, which triggers an out-of-bounds read, related to compiler optimizations.
https://security.gentoo.org/glsa/201709-08
https://lists.debian.org/debian-lts-announce/2019/12/msg00025.html
http://www.securityfocus.com/bid/96779