3 matches found
CVE-2021-36531
ngiflib 0.4 has a heap overflow in GetByte at ngiflib.c:70 in NGIFLIBNOFILE mode, GetByte reads memory buffer without checking the boundary...
Null pointer dereference
ngiflib 0.4 has a heap overflow in GetByteStr at ngiflib.c:108 in NGIFLIBNOFILE mode, GetByteStr copy memory buffer without checking the boundary...
CVE-2021-36530
CVE-2021-36530 affects ngiflib 0.4. The vulnerability is a heap overflow in GetByteStr() (ngiflib.c:108) under NGIFLIB_NO_FILE mode where GetByteStr() copies memory without boundary checks, potentially impacting confidentiality, integrity, and availability (CVSS v3.1: HIGH, NETWORK attack, no aut...