Lucene search
Alpine Linux Development TeamALPINE:CVE-2023-44821HistoryOct 09, 2023 - 8:15 p.m.
CVE-2023-44821
2023-10-0920:15:10
Alpine Linux Development Team
security.alpinelinux.org
3
gifsicle vulnerability
denial of service
untrusted input
memory consumption
unix
Gifsicle through 1.94, if deployed in a way that allows untrusted input to affect Gif_Realloc calls, might allow a denial of service (memory consumption). NOTE: this has been disputed by multiple parties because the Gifsicle code is not commonly used for unattended operation in which new input arrives for a long-running process, does not ship with functionality to link it into another application as a library, and does not have realistic use cases in which an adversary controls the entire command line.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.18-community | noarch | gifsicle | = 1.94-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | gifsicle | = 1.94-r1 | UNKNOWN |
Related
ubuntucve
ubuntucve
CVE-2023-44821
2023-10-09 00:00:00
nvd
nvd
CVE-2023-44821
2023-10-09 20:15:10
prion
prion
Input validation
2023-10-09 20:15:00
cvelist
cvelist
CVE-2023-44821
2023-10-09 00:00:00
debiancve
debiancve
CVE-2023-44821
2023-10-09 20:15:10
cve
cve
CVE-2023-44821
2023-10-09 20:15:10
openvas
openvas
Fedora: Security Advisory for gifsicle (FEDORA-2024-4672c1ff2d)
2024-03-02 00:00:00
Fedora: Security Advisory for gifsicle (FEDORA-2024-5e50570506)
2024-03-02 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: gifsicle-1.95-1.fc39
2024-03-01 01:09:04
[SECURITY] Fedora 38 Update: gifsicle-1.95-1.fc38
2024-03-01 01:40:34
nessus
nessus
Fedora 39 : gifsicle (2024-5e50570506)
2024-02-29 00:00:00
Fedora 38 : gifsicle (2024-4672c1ff2d)
2024-03-01 00:00:00