CVE-2021-45972

Name of the Vulnerable Software and Affected Versions giftrans version 1.12.2

Description The issue arises from a stack-based buffer overflow in the giftrans function. This occurs because a value within the input file dictates the amount of data to be written, allowing an attacker to overwrite up to 250 bytes outside the allocated buffer with arbitrary data.

Recommendations For giftrans version 1.12.2, as a temporary workaround, consider restricting the use of the giftrans function until a patch is available. Avoid using input files that could trigger the buffer overflow. At the moment, there is no information about a newer version that contains a fix for this vulnerability.