7 matches found
Ubuntu 16.04 ESM : Gifsicle vulnerabilities (USN-4803-1)
The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4803-1 advisory. It was discovered that Gifsicle did not properly handle certain input. If a user were tricked into opening a malicious GIF, an attacker could potentially...
Fedora 28 : gifsicle (2018-202c536f70)
Update to 1.91 - fixes double-free in readgif Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
MGASA-2018-0280 Updated gifsicle package fixes security vulnerability
Updated gifsicle package fixes security vulnerability: A double-free bug in the readgif function in gifread.c in gifsicle 1.90 allows a remote attacker to cause a denial-of-service attack or unspecified other impact via a maliciously crafted file, because lastname is mishandled CVE-2017-18120...
Updated gifsicle package fixes security vulnerability
Updated gifsicle package fixes security vulnerability: A double-free bug in the readgif function in gifread.c in gifsicle 1.90 allows a remote attacker to cause a denial-of-service attack or unspecified other impact via a maliciously crafted file, because lastname is mishandled CVE-2017-18120...
Fedora Update for gifsicle FEDORA-2018-9892225623
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-18120
Gifsicle 1.90 contains a double-free in read_gif (gifread.c) caused by mishandling last_name, allowing a remote attacker to trigger a denial-of-service or other impact via a crafted GIF. Public records across multiple advisories note the fix to 1.91 (and related USN/Fedora advisories), with Fedor...
CVE-2017-18120
A double-free bug in the readgif function in gifread.c in gifsicle 1.90 allows a remote attacker to cause a denial-of-service attack or unspecified other impact via a maliciously crafted file, because lastname is mishandled, a different vulnerability than CVE-2017-1000421...