CVE-2021-40633

Published: 14 June 2022

A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception or denial of service via a gif format file.

Notes

no upstream fix available as of 2022-06-22

Priority

Low

CVSS 3 base score: 8.8

Status

References

• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-40633
• NVD
• Launchpad
• Debian

Bugs

• https://sourceforge.net/p/giflib/bugs/157/