Debian Gif2Apng vulnerabilities

5 known vulnerabilities affecting debian/gif2apng.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3LOW2

Vulnerabilities

Page 1 of 1
CVE-2021-45910HIGHCVSS 7.8fixed in gif2apng 1.9+srconly-3+deb11u1 (bullseye)2021
CVE-2021-45910 [HIGH] CVE-2021-45910: gif2apng - An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow w... An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow within the main function. It allows an attacker to write data outside of the allocated buffer. The attacker has control over a part of the address that data is written to, control over the written data, and (to some extent) control over the amount of data that is written. Scope: local bu
debian
CVE-2021-45909HIGHCVSS 7.8fixed in gif2apng 1.9+srconly-3+deb11u1 (bullseye)2021
CVE-2021-45909 [HIGH] CVE-2021-45909: gif2apng - An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow v... An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow vulnerability in the DecodeLZW function. It allows an attacker to write a large amount of arbitrary data outside the boundaries of a buffer. Scope: local bullseye: resolved (fixed in 1.9+srconly-3+deb11u1)
debian
CVE-2021-45911HIGHCVSS 7.8fixed in gif2apng 1.9+srconly-3+deb11u1 (bullseye)2021
CVE-2021-45911 [HIGH] CVE-2021-45911: gif2apng - An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow i... An issue was discovered in gif2apng 1.9. There is a heap-based buffer overflow in the main function. It allows an attacker to write 2 bytes outside the boundaries of the buffer. Scope: local bullseye: resolved (fixed in 1.9+srconly-3+deb11u1)
debian
CVE-2021-45907LOWCVSS 7.82021
CVE-2021-45907 [HIGH] CVE-2021-45907: gif2apng - An issue was discovered in gif2apng 1.9. There is a stack-based buffer overflow ... An issue was discovered in gif2apng 1.9. There is a stack-based buffer overflow involving a for loop. An attacker has little influence over the data written to the stack, making it unlikely that the flow of control can be subverted. Scope: local bullseye: open
debian
CVE-2021-45908LOWCVSS 7.82021
CVE-2021-45908 [HIGH] CVE-2021-45908: gif2apng - An issue was discovered in gif2apng 1.9. There is a stack-based buffer overflow ... An issue was discovered in gif2apng 1.9. There is a stack-based buffer overflow involving a while loop. An attacker has little influence over the data written to the stack, making it unlikely that the flow of control can be subverted. Scope: local bullseye: open
debian