VYPR

rpm package

suse/giflib&distro=SUSE Linux Enterprise Software Development Kit 12 SP5

pkg:rpm/suse/giflib&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Vulnerabilities (4)

  • CVE-2023-39742Aug 25, 2023
    affected < 5.0.5-13.6.1fixed 5.0.5-13.6.1

    giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c.

  • CVE-2021-40633Jun 14, 2022
    affected < 5.0.5-13.3.1fixed 5.0.5-13.3.1

    A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception or denial of service via a gif format file.

  • CVE-2022-28506Apr 25, 2022
    affected < 5.0.5-13.6.1fixed 5.0.5-13.6.1

    There is a heap-buffer-overflow in GIFLIB 5.2.1 function DumpScreen2RGB() in gif2rgb.c:298:45.

  • CVE-2018-11490HigMay 26, 2018
    affected < 5.0.5-13.3.1fixed 5.0.5-13.3.1

    The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain "Private->RunningCode - 2" array index is not checked. This will lead to a denial of service or possibl