PT-2026-41293

Name of the Vulnerable Software and Affected Versions Imager::File::GIF versions prior to 1.003 Description Imager::File::GIF for Perl allows a heap out of bounds OOB write when processing crafted multi-frame GIF files. This occurs because the i readgif multi low function allocates a single per-r...

SUSE CVE-2026-5185

A security flaw has been discovered in Nothings stbimage up to 2.30. This affects the function stbigifloadnext of the file stbimage.h of the component Multi-frame GIF File Handler. The manipulation results in heap-based buffer overflow. The attack requires a local approach. The exploit has been...

DEBIAN-CVE-2025-6199

A flaw was found in the GIF parser of GdkPixbuf’s LZW decoder. When an invalid symbol is encountered during decompression, the decoder sets the reported output size to the full buffer length rather than the actual number of written bytes. This logic error results in uninitialized sections of the...

SUSE CVE-2023-45666

stbimage is a single file MIT licensed library for processing images. It may look like stbiloadgifmain doesn't give guarantees about the content of output value delays upon failure. Although it sets delays to zero at the beginning, it doesn't do it in case the image is not recognized as GIF and a...

Out Of Memory

giflib 5.1.4 is vulnerable to a memory leak out-of-memory in gif2rgb. The vulnerability is due to inadequate memory management in util/gif2rgb.c, enabling remote attackers to trigger an out-of-memory exception or denial of service via a GIF format file...

SUSE CVE-2006-4484

Buffer overflow in the LWZReadByte function in ext/gd/libgd/gdgifin.c in the GD extension in PHP before 5.1.5 allows remote attackers to have an unknown impact via a GIF file with inputcodesize greater than MAXLWZBITS, which triggers an overflow when initializing the table array...

CVE-2021-40633

A memory leak out-of-memory in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception or denial of service via a gif format file...

AZL-41515 CVE-2021-40633 affecting package giflib for versions less than 5.2.1-10

A memory leak out-of-memory in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception or denial of service via a gif format file...

CVE-2021-40633

A memory leak out-of-memory in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception or denial of service via a gif format file...

CVE-2021-40633

A memory leak out-of-memory in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception or denial of service via a gif format file...

Mozilla Firefox Security Advisory (MFSA2016-02) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

Design/Logic Flaw

Unverified indexs into the array lead to out of bound access in the gifoutcode function in fromgif.c in libsixel 1.8.6...

Libnsgif Buffer Overflow Vulnerability

Libnsgif is a decoding library for GIF image file format written in C language. A buffer overflow vulnerability exists in the 'gifnextLZW' function of the libnsgif.c file in Libnsgif version 0.1.2. The vulnerability stems from a networked system or product performing operations in memory without...

CVE-2019-20094

An issue was discovered in libsixel 1.8.4. There is a heap-based buffer overflow in the function gifinitframe at fromgif.c...

Chamillo LMS 1.11.8 - Arbitrary File Upload Exploit

Exploit for php platform in category web applications Exploit Title: Chamillo LMS 1.11.8 - Arbitrary File Upload Google Dork: "powered by chamilo" Exploit Author: Sohel Yousef jellyfish security team Software Link: https://chamilo.org/en/download/ Version: Chamilo 1.11.8 or lower to 1.8 Category:...

Debian DLA-1196-1 : optipng security update

optipng, an advanced PNG Portable Network Graphics optimizer, has been found vulnerable to a buffer overflow which allows remote attackers to cause a denial of service attack or other unspecified impact with a maliciously crafted GIF format file, related to an uncontrolled loop in the LZWReadByte...

CVE-2017-16938

A global buffer overflow in OptiPNG 0.7.6 allows remote attackers to cause a denial-of-service attack or other unspecified impact with a maliciously crafted GIF format file, related to an uncontrolled loop in the LZWReadByte function of the gifread.c file...

CVE-2017-16938

OptiPNG 0.7.6 is affected by a global buffer overflow in the GIF processing path, specifically due to an uncontrolled loop in gifread.c's LZWReadByte, which can allow remote-triggered denial-of-service or other unspecified impact. Affected component: OptiPNG (gif processing). Underlying cause: un...

ImageWorsener 'iwgif_record_pixel()' function denial of service vulnerability

ImageWorsener is a cross-platform command line utility and library for image scaling and other image processing. It has full support for PNG, JPEG, and BMP formats, experimental support for WebP, read-only support for GIF, and limited support for some other image formats. A denial of service...

[SECURITY] Fedora 24 Update: libpng-1.6.27-1.fc24

The libpng package contains a library of functions for creating and manipulating PNG Portable Network Graphics image format files. PNG is a bit-mapped graphics format similar to the GIF format. PNG was created to replace the GIF format, since GIF uses a patented data compression algorithm. Libpng...