Rajat Aggarwal

**Name of the Vulnerable Software and Affected Versions** GIFLIB version 5.2.1 **Description** The issue is related to a heap-buffer-overflow in the `DumpScreen2RGB()` function, located in the `gif2rgb.c` file of the GIFLIB library. This can allow a remote attacker to gain unauthorized access to protected information. The `DumpScreen2RGB()` function is vulnerable due to a buffer overflow, which can be exploited by an attacker. **Recommendations** For GIFLIB version 5.2.1, consider disabling the `DumpScreen2RGB()` function until a patch is available to prevent potential exploitation. Restrict access to the `gif2rgb.c` module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.