GdkPixbuf (aka GDK-PixBuf) before 2.42.8 allows a heap-based buffer overflow when compositing or clearing frames in GIF files. This overflow is controllable and could be abused for code execution. Apache MXNet (incubating) is vulnerable to a potential denial-of-service by excessive resource consumption. Upgrading to version 1.6.1.1 is able to address this issue. There is an elevation of privilege breakout vulnerability in the Windows EXE installer in Scooter Beyond Compare 4.2.0 through 4.4.0.”]
Source: https://www.darkreading.com/cloud-security/six-million-voices-crying-at-once/a/d-id/734599