USN-5969-1: gif2apng vulnerabilities
23 March 2023
Several security issues were fixed in gif2apng.
Releases
Packages
- gif2apng - tool for converting animated GIF images to APNG format
Details
It was discovered that gif2apng contained multiple heap-base overflows. An
attacker could potentially exploit this to cause a denial of service (system
crash). (CVE-2021-45909, CVE-2021-45910, CVE-2021-45911)
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 20.04
Ubuntu 18.04
Ubuntu 16.04
-
gif2apng
-
1.7-3ubuntu0.1~esm1
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.