VYPR

Ngiflib

by Miniupnp Project

Source repositories

CVEs (17)

  • CVE-2018-11576CriMay 31, 2018
    risk 0.64cvss 9.8epss 0.01

    ngiflib.c in MiniUPnP ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor.

  • CVE-2018-11575CriMay 31, 2018
    risk 0.64cvss 9.8epss 0.02

    ngiflib.c in MiniUPnP ngiflib 0.4 has a stack-based buffer overflow in DecodeGifImg.

  • CVE-2021-36531HigAug 27, 2021
    risk 0.57cvss 8.8epss 0.01

    ngiflib 0.4 has a heap overflow in GetByte() at ngiflib.c:70 in NGIFLIB_NO_FILE mode, GetByte() reads memory buffer without checking the boundary.

  • CVE-2021-36530HigAug 27, 2021
    risk 0.57cvss 8.8epss 0.01

    ngiflib 0.4 has a heap overflow in GetByteStr() at ngiflib.c:108 in NGIFLIB_NO_FILE mode, GetByteStr() copy memory buffer without checking the boundary.

  • CVE-2019-20219HigJan 2, 2020
    risk 0.57cvss 8.8epss 0.01

    ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor in ngiflib.c.

  • CVE-2019-16347HigSep 16, 2019
    risk 0.50cvss 8.8epss 0.01

    ngiflib 0.4 has a heap-based buffer overflow in WritePixels() in ngiflib.c when called from DecodeGifImg, because deinterlacing for small pictures is mishandled.

  • CVE-2019-16346HigSep 16, 2019
    risk 0.50cvss 8.8epss 0.02

    ngiflib 0.4 has a heap-based buffer overflow in WritePixel() in ngiflib.c when called from DecodeGifImg, because deinterlacing for small pictures is mishandled.

  • CVE-2019-19011HigNov 17, 2019
    risk 0.49cvss 7.5epss 0.02

    MiniUPnP ngiflib 0.4 has a NULL pointer dereference in GifIndexToTrueColor in ngiflib.c via a file that lacks a palette.

  • CVE-2018-11657HigJun 1, 2018
    risk 0.49cvss 7.5epss 0.01

    ngiflib.c in MiniUPnP ngiflib 0.4 has an infinite loop in DecodeGifImg and LoadGif.

  • CVE-2022-30858MedJul 17, 2023
    risk 0.42cvss 6.5epss 0.01

    An issue was discovered in ngiflib 0.4. There is SEGV in SDL_LoadAnimatedGif when use SDLaffgif. poc : ./SDLaffgif CA_file2_0

  • CVE-2018-11578MedMay 31, 2018
    risk 0.42cvss 6.5epss 0.01

    GifIndexToTrueColor in ngiflib.c in MiniUPnP ngiflib 0.4 has a Segmentation fault.

  • CVE-2020-24221MedAug 11, 2023
    risk 0.36cvss 5.5epss 0.00

    An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local attackers to cause a denial of service (DoS) via crafted .gif file (infinite loop).

  • CVE-2023-39114MedAug 2, 2023
    risk 0.36cvss 5.5epss 0.00

    ngiflib commit 84a75 was discovered to contain a segmentation violation via the function SDL_LoadAnimatedGif at ngiflibSDL.c. This vulnerability is triggered when running the program SDLaffgif.

  • CVE-2023-39113MedAug 2, 2023
    risk 0.36cvss 5.5epss 0.00

    ngiflib commit fb271 was discovered to contain a segmentation violation via the function "main" at gif2tag.c. This vulnerability is triggered when running the program gif2tga.

  • CVE-2023-37748MedJul 19, 2023
    risk 0.36cvss 5.5epss 0.00

    ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at ngiflib.c.

  • CVE-2018-10717HigMay 3, 2018
    risk 0.00cvss 8.8epss 0.02

    The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 does not consider the bounds of the pixels data structure, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other…

  • CVE-2018-10677HigMay 2, 2018
    risk 0.00cvss 8.8epss 0.02

    The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a…