CVE-2025-31344

Опубликовано: 14 апр. 2025

Источник: debian

Описание

Heap-based Buffer Overflow vulnerability in openEuler giflib on Linux. This vulnerability is associated with program files gif2rgb.C. This issue affects giflib: through 5.2.2.

Пакеты

Пакет	Статус	Релиз	Тип
giflib	unfixed		package
giflib	no-dsa	bookworm	package
giflib	postponed	bullseye	package

Примечания

https://www.openwall.com/lists/oss-security/2025/04/07/3
https://sourceforge.net/p/giflib/bugs/176/
Patch by Mandriva: https://github.com/OpenMandrivaAssociation/giflib/blob/master/giflib-5.2.2-cve-2025-31344.patch

Связанные уязвимости

CVE-2025-31344

CVSS3: 7.3

ubuntu

2 месяца назад

Heap-based Buffer Overflow vulnerability in openEuler giflib on Linux. This vulnerability is associated with program files gif2rgb.C. This issue affects giflib: through 5.2.2.

CVE-2025-31344

CVSS3: 5.9

redhat

2 месяца назад

Heap-based Buffer Overflow vulnerability in openEuler giflib on Linux. This vulnerability is associated with program files gif2rgb.C. This issue affects giflib: through 5.2.2.

CVE-2025-31344

CVSS3: 7.3

nvd

2 месяца назад

Heap-based Buffer Overflow vulnerability in openEuler giflib on Linux. This vulnerability is associated with program files gif2rgb.C. This issue affects giflib: through 5.2.2.

CVE-2025-31344

CVSS3: 7.3

msrc

около 2 месяцев назад

Описание отсутствует

SUSE-SU-2025:1164-1

suse-cvrf

2 месяца назад

Security update for giflib