CVE-2026-33018

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain a Use-After-Free vulnerability via the loadgif function in fromgif.c, where a single sixelframet object is reused across all frames of an animated GIF and gifinitframe unconditionally...

Nothing OS 安全漏洞

Nothing OS is an operating system developed by Nothing Corporation. Versions of Nothing OS prior to 2.30 contained a security vulnerability. This vulnerability stemmed from a flaw in the stbimage.h library’s GIF decoding component, specifically the function stbigifloadnext, which could lead to...

MiracleLinux 4 : cups-1.4.2-44.AXS4 (AXSA:2012-67:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-67:01 advisory. The Common UNIX Printing System provides a portable printing layer for UNIX operating systems. It has been developed by Easy Software Products to promote a...

MiracleLinux 3 : cups-1.3.7-30.0.1.AXS3 (AXSA:2012-265:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-265:01 advisory. The Common UNIX Printing System provides a portable printing layer for UNIX operating systems. It has been developed by Easy Software Products to promote a...

EUVD-2021-31469

Malicious code in bioql PyPI...

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the GIF decoding process when handling malformed comment extension blocks lacking a block terminator. An attacker can cause the application to enter an infinite loop and exhaust...

CVE-2013-3673

The gifdecodeframe function in gifdec.c in libavcodec in FFmpeg before 1.2.1 does not properly manage the disposal methods of frames, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash via crafted GIF data...

ngiflib Security Vulnerabilities

ngiflib is a library for decoding the GIF image format written in C. The vulnerability exists in ngiflibSDL.c file. A security vulnerability exists in ngiflib, which stems from a segmentation error in the SDLLoadAnimatedGif method of the ngiflibSDL.c file...

ngiflib Security Vulnerabilities

ngiflib is a library for decoding the GIF image format written in C. It has a vulnerability that stems from a segmentation error in the main method of the gif2tag.c file. A security vulnerability exists in ngiflib, which is caused by a segmentation error in the main method of the gif2tag.c file...

ngiflib 安全漏洞

ngiflib is a GIF image format decoding library written in C. A security vulnerability exists in ngiflib, which stems from the DecodeGifImg function in the file ngiflib.c containing an infinite loop...

SUSE CVE-2017-7890

The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read 700 bytes from the top of the...

SUSE CVE-2018-5711

gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated by a call to the imagecreatefromgif or...

DEBIAN-CVE-2022-1507

chafa: NULL Pointer Dereference in function gifinternaldecodeframe at libnsgif.c:599 allows attackers to cause a denial of service crash via a crafted input file. in GitHub repository hpjansson/chafa prior to 1.10.2. chafa: NULL Pointer Dereference in function gifinternaldecodeframe at...

ngiflib 缓冲区错误漏洞

ngiflib is a GIF image format decoding library written in C. A security vulnerability exists in ngiflib version 0.4, which stems from the GetByteStr function in the ngiflib.c file in the NGFLIBNOFILE module that does not check boundaries when copying memory buffers...

Arbitrary Code Execution

cups is vulnerable to arbitrary code execution. The vulnerability exists as a buffer overflow flaw was discovered in the GIF decoding routines used by CUPS image converting filters "imagetops" and "imagetoraster". An attacker could create a malicious GIF file that could possibly execute arbitrary...

Libnsgif Buffer Overflow Vulnerability (CNVD-2020-16720)

Libnsgif is a decoding library for GIF image file format written in C language. A security vulnerability exists in the 'gifnextLZW' function of the libnsgif.c file in Libnsgif version 0.1.2. An attacker can exploit this vulnerability to cause a denial of service out-of-bounds read and application...

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2018-1249)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ngiflib buffer overflow vulnerability (CNVD-2019-32484)

ngiflib is written in C language GIF image format decoding library. A buffer overflow vulnerability exists in the WritePixel of the ngiflib.c file in ngiflib version 0.4, which can be exploited by an attacker to cause a buffer overflow or heap overflow...

EulerOS Virtualization 2.5.0 : php (EulerOS-SA-2018-1249)

According to the version of the php packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7...

MiniUPnP ngiflib DecodeGifImg' Function Denial of Service Vulnerability

MiniUPnP is a set of UPnP tools developed by MiniUPnP project that can be used in embedded systems. This tool enables devices in home and corporate networks to connect to each other. ngiflib is one of the GIF image format decoding libraries written in C language. A security vulnerability exists i...