CVE-2023-39742Classic Buffer Overflow in Project Giflib

CWE-120Classic Buffer Overflow9 documents8 sources
Severity
5.5MEDIUMNVD
OSV8.8
EPSS
0.0%
top 92.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Giflib Project Giflib
Timeline
PublishedAug 25
Latest updateJun 10

Description

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

Ubuntugiflib_project/giflib< 5.1.9-1ubuntu0.1+3

🔴Vulnerability Details

4
OSV
giflib vulnerabilities2024-06-10
OSV
CVE-2023-39742: giflib v52023-08-25
CVEList
CVE-2023-39742: giflib v52023-08-25
GHSA
GHSA-29c8-646j-hvw9: giflib v52023-08-25

📋Vendor Advisories

4
Ubuntu
GIFLIB vulnerabilities2024-06-10
Red Hat
giflib: segfault via getarg.c2023-08-25
Microsoft
giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c.2023-08-08
Debian
CVE-2023-39742: giflib - giflib v5.2.1 was discovered to contain a segmentation fault via the component g...2023
CVE-2023-39742 — Classic Buffer Overflow | cvebase