Ngiflib
Source repositories
CVEs (17)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-11576 | Cri | 0.64 | 9.8 | 0.01 | May 31, 2018 | ngiflib.c in MiniUPnP ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor. | ||
| CVE-2018-11575 | Cri | 0.64 | 9.8 | 0.02 | May 31, 2018 | ngiflib.c in MiniUPnP ngiflib 0.4 has a stack-based buffer overflow in DecodeGifImg. | ||
| CVE-2021-36531 | Hig | 0.57 | 8.8 | 0.01 | Aug 27, 2021 | ngiflib 0.4 has a heap overflow in GetByte() at ngiflib.c:70 in NGIFLIB_NO_FILE mode, GetByte() reads memory buffer without checking the boundary. | ||
| CVE-2021-36530 | Hig | 0.57 | 8.8 | 0.01 | Aug 27, 2021 | ngiflib 0.4 has a heap overflow in GetByteStr() at ngiflib.c:108 in NGIFLIB_NO_FILE mode, GetByteStr() copy memory buffer without checking the boundary. | ||
| CVE-2019-20219 | Hig | 0.57 | 8.8 | 0.01 | Jan 2, 2020 | ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor in ngiflib.c. | ||
| CVE-2019-16347 | Hig | 0.50 | 8.8 | 0.01 | Sep 16, 2019 | ngiflib 0.4 has a heap-based buffer overflow in WritePixels() in ngiflib.c when called from DecodeGifImg, because deinterlacing for small pictures is mishandled. | ||
| CVE-2019-16346 | Hig | 0.50 | 8.8 | 0.02 | Sep 16, 2019 | ngiflib 0.4 has a heap-based buffer overflow in WritePixel() in ngiflib.c when called from DecodeGifImg, because deinterlacing for small pictures is mishandled. | ||
| CVE-2019-19011 | Hig | 0.49 | 7.5 | 0.02 | Nov 17, 2019 | MiniUPnP ngiflib 0.4 has a NULL pointer dereference in GifIndexToTrueColor in ngiflib.c via a file that lacks a palette. | ||
| CVE-2018-11657 | Hig | 0.49 | 7.5 | 0.01 | Jun 1, 2018 | ngiflib.c in MiniUPnP ngiflib 0.4 has an infinite loop in DecodeGifImg and LoadGif. | ||
| CVE-2022-30858 | Med | 0.42 | 6.5 | 0.01 | Jul 17, 2023 | An issue was discovered in ngiflib 0.4. There is SEGV in SDL_LoadAnimatedGif when use SDLaffgif. poc : ./SDLaffgif CA_file2_0 | ||
| CVE-2018-11578 | Med | 0.42 | 6.5 | 0.01 | May 31, 2018 | GifIndexToTrueColor in ngiflib.c in MiniUPnP ngiflib 0.4 has a Segmentation fault. | ||
| CVE-2020-24221 | Med | 0.36 | 5.5 | 0.00 | Aug 11, 2023 | An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local attackers to cause a denial of service (DoS) via crafted .gif file (infinite loop). | ||
| CVE-2023-39114 | Med | 0.36 | 5.5 | 0.00 | Aug 2, 2023 | ngiflib commit 84a75 was discovered to contain a segmentation violation via the function SDL_LoadAnimatedGif at ngiflibSDL.c. This vulnerability is triggered when running the program SDLaffgif. | ||
| CVE-2023-39113 | Med | 0.36 | 5.5 | 0.00 | Aug 2, 2023 | ngiflib commit fb271 was discovered to contain a segmentation violation via the function "main" at gif2tag.c. This vulnerability is triggered when running the program gif2tga. | ||
| CVE-2023-37748 | Med | 0.36 | 5.5 | 0.00 | Jul 19, 2023 | ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at ngiflib.c. | ||
| CVE-2018-10717 | Hig | 0.00 | 8.8 | 0.02 | May 3, 2018 | The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 does not consider the bounds of the pixels data structure, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other… | ||
| CVE-2018-10677 | Hig | 0.00 | 8.8 | 0.02 | May 2, 2018 | The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a… |
- risk 0.64cvss 9.8epss 0.01
ngiflib.c in MiniUPnP ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor.
- risk 0.64cvss 9.8epss 0.02
ngiflib.c in MiniUPnP ngiflib 0.4 has a stack-based buffer overflow in DecodeGifImg.
- risk 0.57cvss 8.8epss 0.01
ngiflib 0.4 has a heap overflow in GetByte() at ngiflib.c:70 in NGIFLIB_NO_FILE mode, GetByte() reads memory buffer without checking the boundary.
- risk 0.57cvss 8.8epss 0.01
ngiflib 0.4 has a heap overflow in GetByteStr() at ngiflib.c:108 in NGIFLIB_NO_FILE mode, GetByteStr() copy memory buffer without checking the boundary.
- risk 0.57cvss 8.8epss 0.01
ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor in ngiflib.c.
- risk 0.50cvss 8.8epss 0.01
ngiflib 0.4 has a heap-based buffer overflow in WritePixels() in ngiflib.c when called from DecodeGifImg, because deinterlacing for small pictures is mishandled.
- risk 0.50cvss 8.8epss 0.02
ngiflib 0.4 has a heap-based buffer overflow in WritePixel() in ngiflib.c when called from DecodeGifImg, because deinterlacing for small pictures is mishandled.
- risk 0.49cvss 7.5epss 0.02
MiniUPnP ngiflib 0.4 has a NULL pointer dereference in GifIndexToTrueColor in ngiflib.c via a file that lacks a palette.
- risk 0.49cvss 7.5epss 0.01
ngiflib.c in MiniUPnP ngiflib 0.4 has an infinite loop in DecodeGifImg and LoadGif.
- risk 0.42cvss 6.5epss 0.01
An issue was discovered in ngiflib 0.4. There is SEGV in SDL_LoadAnimatedGif when use SDLaffgif. poc : ./SDLaffgif CA_file2_0
- risk 0.42cvss 6.5epss 0.01
GifIndexToTrueColor in ngiflib.c in MiniUPnP ngiflib 0.4 has a Segmentation fault.
- risk 0.36cvss 5.5epss 0.00
An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local attackers to cause a denial of service (DoS) via crafted .gif file (infinite loop).
- risk 0.36cvss 5.5epss 0.00
ngiflib commit 84a75 was discovered to contain a segmentation violation via the function SDL_LoadAnimatedGif at ngiflibSDL.c. This vulnerability is triggered when running the program SDLaffgif.
- risk 0.36cvss 5.5epss 0.00
ngiflib commit fb271 was discovered to contain a segmentation violation via the function "main" at gif2tag.c. This vulnerability is triggered when running the program gif2tga.
- risk 0.36cvss 5.5epss 0.00
ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at ngiflib.c.
- risk 0.00cvss 8.8epss 0.02
The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 does not consider the bounds of the pixels data structure, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other…
- risk 0.00cvss 8.8epss 0.02
The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a…