CVE-2023-46009 — Incorrect Comparison in Gifsicle

Severity

7.8HIGHNVD

EPSS

0.1%

top 82.70%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedOct 18

Description

gifsicle-1.94 was found to have a floating point exception (FPE) vulnerability via resize_stream at src/xform.c.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

OSV

CVE-2023-46009: gifsicle-1↗2023-10-18

▶

GHSA

GHSA-jv9p-xg7j-p65c: gifsicle-1↗2023-10-18

▶

Debian

CVE-2023-46009: gifsicle - gifsicle-1.94 was found to have a floating point exception (FPE) vulnerability v...↗2023

▶