Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2016-3977

Published: 21/04/2016 Updated: 30/10/2018
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Opensuse

Vulnerability Summary

Heap-based buffer overflow in util/gif2rgb.c in gif2rgb in giflib 5.1.2 allows remote malicious users to cause a denial of service (application crash) via the background color index in a GIF file.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

opensuse opensuse 13.2

giflib project giflib

Vendor Advisories

Ubuntu Security Notice: giflib vulnerabilities
Several security issues were fixed in GIFLIB ...
Debian CVElist Bug Report Logs: CVE-2018-11490
Debian Bug report logs - #904114 CVE-2018-11490 Package: src:giflib; Maintainer for src:giflib is Debian QA Group <packages@qadebianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Thu, 19 Jul 2018 21:39:04 UTC Severity: important Tags: security, upstream Found in version giflib/514-01 Fixed in vers ...
Debian CVElist Bug Report Logs: giflib: CVE-2016-3977: gif2rgb: heap buffer overflow
Debian Bug report logs - #820526 giflib: CVE-2016-3977: gif2rgb: heap buffer overflow Package: src:giflib; Maintainer for src:giflib is Debian QA Group <packages@qadebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 9 Apr 2016 13:57:02 UTC Severity: important Tags: fixed-upstream, patch, s ...
Debian CVElist Bug Report Logs: giflib: out of bound read and write issues
Debian Bug report logs - #820594 giflib: out of bound read and write issues Package: src:giflib; Maintainer for src:giflib is Debian QA Group <packages@qadebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 10 Apr 2016 12:06:02 UTC Severity: important Tags: fixed-upstream, patch, security, u ...
Red Hat: CVE-2016-3977
Heap-based buffer overflow in util/gif2rgbc in gif2rgb in giflib 512 allows remote attackers to cause a denial of service (application crash) via the background color index in a GIF file ...

References

CWE-119http://bugs.fi/fuzzing/index.htmlhttp://lists.opensuse.org/opensuse-updates/2016-04/msg00079.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=1325771https://sourceforge.net/p/giflib/bugs/87/https://sourceforge.net/p/giflib/code/ci/ea8dbc5786862a3e16a5acfa3d24e2c2f608cd88/http://www.securityfocus.com/bid/88103http://lists.opensuse.org/opensuse-updates/2016-05/msg00019.htmlhttp://lists.opensuse.org/opensuse-updates/2016-04/msg00084.htmlhttps://usn.ubuntu.com/4107-1/https://usn.ubuntu.com/4107-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-25525CVE-2024-4652CVE-2024-1438CVE-2024-4671CVE-2024-34351arbitrary CVE-2024-4650SQL injectionoverflow
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook