CVE-2018-11490

2018-05-26T18:29:00
ID CVE-2018-11490
Type cve
Reporter cve@mitre.org
Modified 2020-08-24T17:37:00

Description

The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain "Private->RunningCode - 2" array index is not checked. This will lead to a denial of service or possibly unspecified other impact.