Thomas Bernard

**Name of the Vulnerable Software and Affected Versions** ngiflib version fb271 **Description** The issue is related to a segmentation violation in the `main` function at gif2tag.c. This problem occurs when running the program gif2tga. **Recommendations** For ngiflib version fb271, consider avoiding the use of the `main` function in gif2tag.c until a patch is available. As a temporary workaround, restrict the execution of the gif2tga program to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** ngiflib version 5e7292 **Description** The issue is related to an infinite loop in the DecodeGifImg function at ngiflib.c. This function is part of the ngiflib commit 5e7292. **Recommendations** For ngiflib version 5e7292, consider disabling the DecodeGifImg function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** LibTIFF version 4.0.10 **Description** A denial-of-service issue was discovered in the TIFFWriteDirectoryTagTransferfunction, affecting the cpSeparateBufToContigBuf function. This issue allows remote attackers to cause a denial-of-service via a crafted TIFF file. The vulnerability is related to an invalid address dereference and a buffer data boundary operation. **Recommendations** For LibTIFF version 4.0.10, consider updating to a newer version that addresses this issue, as no specific fix is provided for this version. As a temporary workaround, consider restricting the use of crafted TIFF files to minimize the risk of exploitation.