PT-2018-10737 · Miniupnp · Miniupnp Ngiflib

Edward-Lo

Published

2018-06-01

Updated

2019-10-03

CVE-2018-11657

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions MiniUPnP ngiflib version 0.4

Description The issue is related to an infinite loop in the DecodeGifImg and LoadGif functions within the ngiflib.c file of MiniUPnP ngiflib.

Recommendations For MiniUPnP ngiflib version 0.4, consider updating to a newer version that addresses this issue, as the current version contains an infinite loop in the DecodeGifImg and LoadGif functions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-835

Related Identifiers

CVE-2018-11657

Affected Products

Miniupnp Ngiflib

PT-2018-10737 · Miniupnp · Miniupnp Ngiflib

CVE-2018-11657

Weakness Enumeration

Related Identifiers

Affected Products

References · 3