Описание
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb.
A flaw was found in the GIFLIB project. Processing specially-crafted input may trigger a heap buffer overflow condition, which can cause a denial of service.
Отчет
No Red Hat products are affected by this vulnerability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat build of OpenJDK 11 | java-11-openjdk-portable | Not affected | ||
| Red Hat build of OpenJDK 17 | java-17-openjdk-portable | Not affected | ||
| Red Hat build of OpenJDK 1.8 | java-1.8.0-openjdk-portable | Not affected | ||
| Red Hat build of OpenJDK 21 | java-21-openjdk-portable-rhel7 | Not affected | ||
| Red Hat Enterprise Linux 10 | giflib | Not affected | ||
| Red Hat Enterprise Linux 10 | java-21-openjdk | Not affected | ||
| Red Hat Enterprise Linux 7 | giflib | Not affected | ||
| Red Hat Enterprise Linux 8 | giflib | Not affected | ||
| Red Hat Enterprise Linux 8 | java-11-openjdk | Not affected | ||
| Red Hat Enterprise Linux 8 | java-17-openjdk | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-122
https://bugzilla.redhat.com/show_bug.cgi?id=2315710giflib: heap buffer overflow via gif2rgb
6.6 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.5
ubuntu
больше 1 года назад
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb.
CVSS3: 6.5
nvd
больше 1 года назад
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb.
CVSS3: 6.5
debian
больше 1 года назад
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2 ...
CVSS3: 6.5
github
больше 1 года назад
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb.
6.6 Medium
CVSS3