Lucene search
Ubuntu.comUB:CVE-2016-3977HistoryApr 21, 2016 - 12:00 a.m.
CVE-2016-3977
2016-04-2100:00:00
ubuntu.com
ubuntu.com
7
0.018 Low
EPSS
Percentile
88.3%
Heap-based buffer overflow in util/gif2rgb.c in gif2rgb in giflib 5.1.2
allows remote attackers to cause a denial of service (application crash)
via the background color index in a GIF file.
Bugs
Notes
| Author | Note |
|---|---|
| sbeattie | out of bounds read |
| mdeslaur | looks like this was fixed in 5.1.4-0.3 but then the patch got dropped again in 5.1.4-0.4 although it’s still needed, contrary to the note in the changelog |
Related
nessus
nessus
RHEL 5 : giflib (Unpatched Vulnerability)
2024-05-11 00:00:00
SUSE SLED12 / SLES12 Security Update : giflib (SUSE-SU-2016:1140-1)
2016-04-27 00:00:00
openSUSE Security Update : giflib (openSUSE-2016-497)
2016-04-21 00:00:00
mageia
mageia
Updated giflib packages fix security vulnerability
2016-11-26 13:41:56
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:1140-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:1139-1)
2021-06-09 00:00:00
Mageia: Security Advisory (MGASA-2016-0399)
2022-01-28 00:00:00
debiancve
debiancve
CVE-2016-3977
2016-04-21 14:59:00
prion
prion
Heap overflow
2016-04-21 14:59:00
cvelist
cvelist
CVE-2016-3977
2016-04-21 14:00:00
cve
cve
CVE-2016-3977
2016-04-21 14:59:00
alpinelinux
alpinelinux
CVE-2016-3977
2016-04-21 14:59:00
ibm
ibm
ubuntu
ubuntu
GIFLIB vulnerabilities
2019-08-20 00:00:00
suse
suse
Security update for giflib (moderate)
2022-05-06 00:00:00