Oddcoder

**Name of the Vulnerable Software and Affected Versions** ImageWorsener version 1.3.1 **Description** The issue allows remote attackers to cause a denial of service, specifically an infinite loop, by providing a crafted image. This is due to a problem in the my skip input data fn function in imagew-jpeg.c in libimageworsener.a. **Recommendations** For ImageWorsener version 1.3.1, consider restricting the use of the my skip input data fn function until a patch is available. As a temporary workaround, avoid processing untrusted or crafted images to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** ImageWorsener version 1.3.1 **Description** The issue allows remote attackers to cause a denial of service, resulting in an infinite loop, by providing a crafted image. This is due to a problem in the lzw add to dict function in imagew-gif.c in libimageworsener.a. **Recommendations** For ImageWorsener version 1.3.1, consider avoiding the use of the lzw add to dict function until a patch is available. As a temporary workaround, restrict the processing of crafted images to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.