Your submission was sent successfully! Close

CVE-2016-3177

Published: 23 January 2017

Multiple use-after-free and double-free vulnerabilities in gifcolor.c in GIFLIB 5.1.2 have unspecified impact and attack vectors.

Notes

AuthorNote
tyhicks
Flaw is in the gifcolor utility and not in the library
Priority

Negligible

CVSS 3 base score: 9.8

Status

Package Release Status
giflib
Launchpad, Ubuntu, Debian
artful Not vulnerable
(gifcolor not in giflib-tools)
bionic Not vulnerable
(gifcolor not in giflib-tools)
cosmic Not vulnerable
(gifcolor not in giflib-tools)
disco Not vulnerable
(gifcolor not in giflib-tools)
precise Does not exist
(precise was needed)
trusty Does not exist
(trusty was needed)
upstream
Released (5.1.3)
wily Ignored
(reached end-of-life)
xenial Not vulnerable
(gifcolor not in giflib-tools)
yakkety Not vulnerable
(gifcolor not in giflib-tools)
zesty Not vulnerable
(gifcolor not in giflib-tools)
Patches:
upstream: https://sourceforge.net/p/giflib/code/ci/728772