Your submission was sent successfully! Close

CVE-2015-7555

Published: 13 April 2016

Heap-based buffer overflow in giffix.c in giffix in giflib 5.1.1 allows attackers to cause a denial of service (program crash) via crafted image and logical screen width fields in a GIF file.

Priority

Low

CVSS 3 base score: 5.5

Status

Package Release Status
giflib
Launchpad, Ubuntu, Debian
Upstream
Released (4.1.6-11+deb8u1, 5.1.2)
Ubuntu 18.04 LTS (Bionic Beaver) Not vulnerable
(5.1.2-0.1)
Ubuntu 16.04 ESM (Xenial Xerus) Not vulnerable
(5.1.2-0.1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was needed)
Patches:
Upstream: http://sourceforge.net/p/giflib/code/ci/179510be300bf11115e37528d79619b53c884a63