PT-2026-26131 · Giflib · Giflib

Zakka

Published

2026-01-01

Updated

2026-05-18

CVE-2026-26740

CVSS v3.1

8.2

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Name of the Vulnerable Software and Affected Versions giflib version 5.2.2

Description A buffer overflow issue exists in giflib version 5.2.2. This flaw is due to the EGifGCBToExtension function overwriting an existing Graphic Control Extension block without validating its allocated size. This can lead to a denial of service.

Recommendations Update giflib to a newer version that addresses this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALSA-2026:9693

BDU:2026-06618

CLEANSTART-2026-CQ39708

CLEANSTART-2026-DV49899

CLEANSTART-2026-OQ84658

CVE-2026-26740

ECHO-72CE-97FD-D225

RHSA-2026:9254

RHSA-2026:9686

RHSA-2026:9693

Affected Products

Giflib

PT-2026-26131 · Giflib · Giflib

CVE-2026-26740

Weakness Enumeration

Related Identifiers

Affected Products

References · 62