Ngiflib Security Vulnerabilities and Issues — Ngiflib CVE List

Lucene search

Miniupnp ProjectNgiflib

17 matches found

CVE•added 2018/05/31 12:29 a.m.•45 views

CVE-2018-11578

GifIndexToTrueColor in ngiflib.c in MiniUPnP ngiflib 0.4 has a Segmentation fault.

6.5CVSS6.4AI score0.00285EPSS

CVE•added 2023/08/02 11:15 p.m.•43 views

CVE-2023-39114

ngiflib commit 84a75 was discovered to contain a segmentation violation via the function SDL_LoadAnimatedGif at ngiflibSDL.c. This vulnerability is triggered when running the program SDLaffgif.

5.5CVSS5.5AI score0.00023EPSS

CVE•added 2023/07/19 5:15 p.m.•42 views

CVE-2023-37748

ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at ngiflib.c.

5.5CVSS5.6AI score0.00023EPSS

CVE•added 2018/06/01 3:29 p.m.•41 views

CVE-2018-11657

ngiflib.c in MiniUPnP ngiflib 0.4 has an infinite loop in DecodeGifImg and LoadGif.

7.5CVSS7.5AI score0.0028EPSS

CVE•added 2020/01/02 3:15 p.m.•41 views

CVE-2019-20219

ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor in ngiflib.c.

8.8CVSS8.7AI score0.00391EPSS

CVE•added 2021/08/27 4:15 p.m.•40 views

CVE-2021-36530

ngiflib 0.4 has a heap overflow in GetByteStr() at ngiflib.c:108 in NGIFLIB_NO_FILE mode, GetByteStr() copy memory buffer without checking the boundary.

8.8CVSS8.9AI score0.00352EPSS

CVE•added 2018/05/03 5:29 p.m.•39 views

CVE-2018-10717

The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 does not consider the bounds of the pixels data structure, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted...

8.8CVSS9.1AI score0.00599EPSS

CVE•added 2018/05/31 12:29 a.m.•39 views

CVE-2018-11575

ngiflib.c in MiniUPnP ngiflib 0.4 has a stack-based buffer overflow in DecodeGifImg.

9.8CVSS9.7AI score0.00459EPSS

CVE•added 2021/08/27 4:15 p.m.•39 views

CVE-2021-36531

ngiflib 0.4 has a heap overflow in GetByte() at ngiflib.c:70 in NGIFLIB_NO_FILE mode, GetByte() reads memory buffer without checking the boundary.

8.8CVSS8.9AI score0.00352EPSS

CVE•added 2018/05/31 12:29 a.m.•38 views

CVE-2018-11576

ngiflib.c in MiniUPnP ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor.

9.8CVSS9.5AI score0.00433EPSS

CVE•added 2023/07/17 7:15 p.m.•36 views

CVE-2022-30858

An issue was discovered in ngiflib 0.4. There is SEGV in SDL_LoadAnimatedGif when use SDLaffgif. poc : ./SDLaffgif CA_file2_0

6.5CVSS6.4AI score0.00054EPSS

CVE•added 2019/09/16 1:15 p.m.•35 views

CVE-2019-16347

ngiflib 0.4 has a heap-based buffer overflow in WritePixels() in ngiflib.c when called from DecodeGifImg, because deinterlacing for small pictures is mishandled.

8.8CVSS8.9AI score0.00437EPSS

CVE•added 2019/11/17 6:15 p.m.•34 views

CVE-2019-19011

MiniUPnP ngiflib 0.4 has a NULL pointer dereference in GifIndexToTrueColor in ngiflib.c via a file that lacks a palette.

7.5CVSS7.4AI score0.00498EPSS

CVE•added 2019/09/16 1:15 p.m.•31 views

CVE-2019-16346

ngiflib 0.4 has a heap-based buffer overflow in WritePixel() in ngiflib.c when called from DecodeGifImg, because deinterlacing for small pictures is mishandled.

8.8CVSS8.9AI score0.00414EPSS

CVE•added 2023/08/02 11:15 p.m.•31 views

CVE-2023-39113

ngiflib commit fb271 was discovered to contain a segmentation violation via the function "main" at gif2tag.c. This vulnerability is triggered when running the program gif2tga.

5.5CVSS5.5AI score0.00023EPSS

CVE•added 2018/05/02 7:29 p.m.•30 views

CVE-2018-10677

The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted GIF file.

8.8CVSS9AI score0.00599EPSS

CVE•added 2023/08/11 2:15 p.m.•27 views

CVE-2020-24221

An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local attackers to cause a denial of service (DoS) via crafted .gif file (infinite loop).

5.5CVSS5.3AI score0.00036EPSS