High severity8.8OSV Advisory· Published May 2, 2018· Updated Jun 17, 2026
CVE-2018-10677
CVE-2018-10677
Description
The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted GIF file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
20.1, 0.2, 0.4+ 1 more
- (no CPE)range: 0.1, 0.2, 0.4
- (no CPE)range: = 0.4
Patches
Vulnerability mechanics
References
2- github.com/miniupnp/ngiflib/commit/b588a2249c7abbfc52173e32ee11d6facef82f89nvdPatch
- github.com/miniupnp/ngiflib/issues/1nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.