Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Giflib Security Vulnerabilities

cve
cve

CVE-2015-7555

Heap-based buffer overflow in giffix.c in giffix in giflib 5.1.1 allows attackers to cause a denial of service (program crash) via crafted image and logical screen width fields in a GIF file.

5.5CVSS

5.5AI Score

0.002EPSS

2016-04-13 03:59 PM
49
cve
cve

CVE-2016-3177

Multiple use-after-free and double-free vulnerabilities in gifcolor.c in GIFLIB 5.1.2 have unspecified impact and attack vectors.

9.8CVSS

9.8AI Score

0.002EPSS

2017-01-23 09:59 PM
24
cve
cve

CVE-2016-3977

Heap-based buffer overflow in util/gif2rgb.c in gif2rgb in giflib 5.1.2 allows remote attackers to cause a denial of service (application crash) via the background color index in a GIF file.

5.5CVSS

5.6AI Score

0.018EPSS

2016-04-21 02:59 PM
62
cve
cve

CVE-2018-11489

The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain CrntCode array index is not checked. This will lead to a denial of service or possibly unspecified other impact.

8.8CVSS

9AI Score

0.009EPSS

2018-05-26 06:29 PM
33
cve
cve

CVE-2018-11490

The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain "Private->RunningCode - 2" array index is not checked. This will lead to a denial of service or possibly unspecified ot...

8.8CVSS

8.8AI Score

0.003EPSS

2018-05-26 06:29 PM
94
cve
cve

CVE-2019-15133

In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero.

6.5CVSS

6.4AI Score

0.002EPSS

2019-08-17 06:15 PM
296
cve
cve

CVE-2020-23922

An issue was discovered in giflib through 5.1.4. DumpScreen2RGB in gif2rgb.c has a heap-based buffer over-read.

7.1CVSS

6.8AI Score

0.001EPSS

2021-04-21 06:15 PM
52
6
cve
cve

CVE-2021-40633

A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception or denial of service via a gif format file.

8.8CVSS

8.2AI Score

0.004EPSS

2022-06-14 11:15 AM
52
4
cve
cve

CVE-2022-28506

There is a heap-buffer-overflow in GIFLIB 5.2.1 function DumpScreen2RGB() in gif2rgb.c:298:45.

5.5CVSS

5.5AI Score

0.001EPSS

2022-04-25 01:15 PM
170
3
cve
cve

CVE-2023-39742

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c.

5.5CVSS

5.2AI Score

0.0004EPSS

2023-08-25 02:15 PM
550
cve
cve

CVE-2023-48161

Buffer Overflow vulnerability in GifLib Project GifLib v.5.2.1 allows a local attacker to obtain sensitive information via the DumpSCreen2RGB function in gif2rgb.c

7.1CVSS

6.5AI Score

0.0004EPSS

2023-11-22 06:15 AM
40