Design/Logic Flaw

The iwgifinitscreen function in imagew-gif.c:510 in ImageWorsener 1.3.2 allows remote attackers to cause a denial of service hmemory exhaustion via a crafted file...

CVE-2017-18254

An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerability was found in the function WriteGIFImage in coders/gif.c, which allow remote attackers to cause a denial of service via a crafted file...

SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2018:0017-1)

This update for ImageMagick fixes the following issues : - security update xcf.c : - CVE-2017-14343: Memory leak vulnerability in ReadXCFImage could lead to denial of service via a crafted file. CVE-2017-12691: The ReadOneLayer function in coders/xcf.c allows remote attackers to cause a denial of...

CVE-2017-9094

The lzwaddtodict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service infinite loop via a crafted image...

CVE-2017-9094

The lzwaddtodict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service infinite loop via a crafted image...

CVE-2017-7940

The CVE-2017-7940 issue affects ImageWorsener 1.3.0, specifically the iw_read_gif_file function in imagew-gif.c of libimageworsener.a. A crafted GIF can cause memory exhaustion, enabling a remote attacker to consume available memory. Public references (Gentoo GLSA 201706-06 and CNVD/CVE replicas)...

CVE-2017-7453

ImageWorsener 1.3.0 contains a vulnerability in iwgif_record_pixel() in imagew-gif.c that can cause a denial-of-service via a crafted file, due to a NULL pointer dereference. Affected component: libimageworsener.a (ImageWorsener 1.3.0). Impact described as DoS (partial availability impact). No ex...

CVE-2015-8808

The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...

CVE-2016-2330

libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .tga file, related to the gifimagewriteimage, gifencodeinit, and...

CVE-2016-2330

libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .tga file, related to the gifimagewriteimage, gifencodeinit, and...

CVE-2016-2330

libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .tga file, related to the gifimagewriteimage, gifencodeinit, and...

ImageMagick < 6.7.8-8 gif.c Memory Corruption

The remote Windows host is running a version of ImageMagick prior to version 6.7.8-8. It is, therefore, affected by a memory corruption vulnerability in 'gif.c' while processing GIF comments because a null character is used to terminate comments. Exploitation of this issue could result in a denia...

Design/Logic Flaw

The gdkpixbufgifimageload function in gdk-pixbuf/io-gif.c in gdk-pixbuf before 2.23.5 does not properly handle certain return values, which allows remote attackers to cause a denial of service memory consumption via a crafted GIF image file...

CVE-2011-3170

The gifreadlzw function in filter/image-gif.c in CUPS 1.4.8 and earlier does not properly handle the first code word in an LZW stream, which allows remote attackers to trigger a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted stream, a different vulnerability than...