I’ve just released gdk-pixbuf 2.42.2, which contains a security fix for CVE-2020-29385 in the GIF loading code.
For more information, see: https://gitlab.gnome.org/GNOME/gdk-pixbuf/-/issues/164
Earlier versions of gdk-pixbuf are not known to be affected.