CVE-2011-2896

CWE-787Out-of-bounds Write15 documents8 sources
Severity
5.1MEDIUM
EPSS
7.2%
top 8.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Apple CupsGimp GimpSwi-prolog Swi-prolog
Timeline
PublishedAug 19
Latest updateMay 13

Description

The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in PBMPLUS, as used in the gif_read_lzw function in filter/image-gif.c in CUPS before 1.4.7, the LZWReadByte function in plug-ins/common/file-gif-load.c in GIMP 2.6.11 and earlier, the LZWReadByte function in img/gifread.c in XPCE in SWI-Prolog 5.10.4 and earlier, and other products, does not properly handle code words that are absent from the decompression table when encountered, which allows remote a

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages5 packages

Debiancups< 1.5.0-8+3
Debiangimp< 2.6.11-5+3
NVDgimp/gimp2.6.11
NVDapple/cups1.4.6

Patches

Patch: cups.orgPatch: git.gnome.orgPatch: www.openwall.com

🔴Vulnerability Details

3
GHSA
GHSA-46mw-xwc9-f8hc: The LZW decompressor in the LWZReadByte function in giftoppm2022-05-13
CVEList
CVE-2011-2896: The LZW decompressor in the LWZReadByte function in giftoppm2011-08-19
OSV
CVE-2011-2896: The LZW decompressor in the LWZReadByte function in giftoppm2011-08-19

📋Vendor Advisories

6
Ubuntu
GIMP vulnerability2011-09-22
Ubuntu
CUPS vulnerabilities2011-09-14
Red Hat
David Koblas' GIF decoder LZW decoder buffer overflow2011-08-10
Red Hat
BSD compress LZW decoder buffer overflow2011-08-10
Red Hat
cups: gif_read_lzw() does not properly handle first code word in an LZW stream, which may lead to arbitrary code execution2011-08-04

💬Community

5
Bugzilla
CVE-2011-2896 pl: David Koblas' GIF decoder LZW decoder buffer overflow [fedora-all]2011-08-19
Bugzilla
CVE-2011-2896 David Koblas' GIF decoder LZW decoder buffer overflow [fedora-all]2011-08-19
Bugzilla
CVE-2011-3170 cups: gif_read_lzw() does not properly handle first code word in an LZW stream, which may lead to arbitrary code execution2011-08-19
Bugzilla
CVE-2011-2896 David Koblas' GIF decoder LZW decoder buffer overflow [fedora-all]2011-08-12
Bugzilla
CVE-2011-2896 David Koblas' GIF decoder LZW decoder buffer overflow2011-08-03
CVE-2011-2896 (MEDIUM CVSS 5.1) | The LZW decompressor in the LWZRead | cvebase.io