Lucene search
K

493 matches found

OSV
OSV
added last week6 views

OESA-2026-2707 giflib security update

giflib is a library of gif images and provides utilities for processing images. Security Fixes: Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the EGifGCBToExtension overwriting an existing Graphic Control Extension block without validati...

8.2CVSS5.9AI score0.00467EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/05/27 6:29 p.m.12 views

CVE-2026-42879 FacturaScripts: Authenticated Remote Code Execution (RCE) via GIF Image Upload in Product Images

FacturaScripts is an open source accounting and invoicing software. In 2025.81 and earlier, an authenticated unrestricted file upload vulnerability exists in FacturaScripts' product image upload functionality. An attacker with valid credentials can upload a PHP file disguised as a GIF image using...

6.3CVSS5.8AI score0.00229EPSS
Exploits0References1
OSV
OSV
added 2026/04/15 8:16 p.m.2 views

UBUNTU-CVE-2026-6384

A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's ReadJeffsImage function allows an attacker to write beyond an allocated buffer by processing a specially crafted GIF file. This can lead to a denial of service or potentially arbitrary code execution...

7.8CVSS6.2AI score0.00261EPSS
Exploits0References3
OSV
OSV
added 2026/03/31 8:15 a.m.3 views

DEBIAN-CVE-2026-5186

A weakness has been identified in Nothings stb up to 2.30. This impacts the function stbiloadgifmain of the file stbimage.h of the component Multi-frame GIF File Handler. This manipulation causes double free. The attack requires local access. The exploit has been made available to the public and...

4.8CVSS5.2AI score0.00113EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/29 7:31 a.m.2 views

CVE-2026-4985

A flaw was found in dloebl CGIF, a GIF image handler component. A remote attacker could exploit an integer overflow vulnerability by manipulating the width or height arguments when adding a frame. This could lead to a denial of service DoS, making the affected system or application unavailable...

5.3CVSS5.9AI score0.00492EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/28 12:31 a.m.4 views

EUVD-2026-16894

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS5.8AI score0.00492EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-4985

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Imag...

5.3CVSS5.6AI score0.00492EPSS
Exploits0References3
NVD
NVD
added 2026/03/27 10:16 p.m.1 views

CVE-2026-4985

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS0.00492EPSS
Exploits0References7
OSV
OSV
added 2026/03/27 10:16 p.m.0 views

DEBIAN-CVE-2026-4985

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS4.7AI score0.00492EPSS
Exploits0References1
OSV
OSV
added 2026/03/27 10:16 p.m.4 views

UBUNTU-CVE-2026-4985

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS5.6AI score0.00492EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/03/27 9:27 p.m.2 views

CVE-2026-4985

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS5.8AI score0.00492EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/03/27 9:27 p.m.24 views

CVE-2026-4985 dloebl CGIF GIF Image cgif.c cgif_addframe integer overflow

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS0.00492EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/03/27 9:27 p.m.3 views

CVE-2026-4985 dloebl CGIF GIF Image cgif.c cgif_addframe integer overflow

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS5.7AI score0.00492EPSS
Exploits0References7
CVE
CVE
added 2026/03/27 9:27 p.m.19 views

CVE-2026-4985

The CVE-2026-4985 entry concerns dloebl CGIF v0.5.2 and earlier, affecting the GIF Image Handler’s cgif_addframe (src/cgif.c). The vulnerability stems from an integer overflow caused by manipulating width/height, potentially exploitable remotely. A patch is available (patch id: b0ba830093f4317a5d...

5.3CVSS5.8AI score0.00492EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/03/27 9:27 p.m.6 views

CVE-2026-4985

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS4.7AI score0.00492EPSS
Exploits0
Fedora
Fedora
added 2026/03/24 12:52 a.m.10 views

[SECURITY] Fedora 43 Update: giflib-5.2.2-9.fc43

giflib is a library for reading and writing gif images...

7CVSS5.8AI score0.00144EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/03/19 12:26 a.m.3 views

SUSE CVE-2026-26740

Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the EGifGCBToExtension overwriting an existing Graphic Control Extension block without validating its allocated size...

8.6CVSS5.8AI score0.00467EPSS
Exploits1References7
CVE
CVE
added 2026/02/19 2:34 p.m.24 views

CVE-2026-25535

CVE-2026-25535 affects jsPDF (prior to 4.2.0). If the first argument to addImage (and other affected methods like html) can be controlled with unsanitized image data or URLs, a malicious GIF with large width/height entries can trigger excessive memory allocation, causing out-of-memory and denial ...

8.7CVSS5.6AI score0.00717EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2026/02/19 2:34 p.m.25 views

CVE-2026-25535 jsPDF Affected by Client-Side/Server-Side Denial of Service via Malicious GIF Dimensions

jsPDF is a library to generate PDFs in JavaScript. Prior to 4.2.0, user control of the first argument of the addImage method results in denial of service. If given the possibility to pass unsanitized image data or URLs to the addImage method, a user can provide a harmful GIF file that results in...

8.7CVSS0.00717EPSS
Exploits1References4
NVD
NVD
added 2026/02/04 7:16 p.m.5 views

CVE-2026-0536

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS0.00178EPSS
Exploits0References2
Rows per page
Query Builder