CVE-2005-2974

Name of the Vulnerable Software and Affected Versions libungif library versions prior to 4.1.0 giflib versions 4.1.3 and earlier libungif-progs versions 4.1.3 and earlier libungif-devel versions 4.1.3 and earlier giflib-devel versions 4.1.3 and earlier libungif-progs versions 4.1.0 and earlier libungif-devel versions 4.1.0 and earlier

Description The issue concerns multiple vulnerabilities in the libungif library and related packages in Red Hat Enterprise Linux, which can lead to disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. According to the information, attackers can cause a denial of service via a crafted GIF file that triggers a null dereference.

Recommendations For libungif library versions prior to 4.1.0, update to version 4.1.0 or later. For giflib versions 4.1.3 and earlier, update to a version later than 4.1.3. For libungif-progs versions 4.1.3 and earlier, update to a version later than 4.1.3. For libungif-devel versions 4.1.3 and earlier, update to a version later than 4.1.3. For giflib-devel versions 4.1.3 and earlier, update to a version later than 4.1.3. For libungif-progs versions 4.1.0 and earlier, update to version 4.1.0 or later. For libungif-devel versions 4.1.0 and earlier, update to version 4.1.0 or later.