PT-2026-26131 · Giflib · Giflib

Zakka

Publicado

2026-01-01

Atualizado

2026-05-18

CVE-2026-26740

CVSS v3.1

8.2

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Name of the Vulnerable Software and Affected Versions giflib version 5.2.2

Description A buffer overflow issue exists in giflib version 5.2.2. This flaw is due to the EGifGCBToExtension function overwriting an existing Graphic Control Extension block without validating its allocated size. This can lead to a denial of service.

Recommendations Update giflib to a newer version that addresses this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

ALSA-2026:9693

BDU:2026-06618

CLEANSTART-2026-CQ39708

CLEANSTART-2026-DV49899

CLEANSTART-2026-OQ84658

CVE-2026-26740

ECHO-72CE-97FD-D225

RHSA-2026:9254

RHSA-2026:9686

RHSA-2026:9693

Produtos afetados

Giflib

PT-2026-26131 · Giflib · Giflib

CVE-2026-26740

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 62