Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2016-0020
HistoryJan 15, 2016 - 4:52 a.m.

Updated giflib packages fix security vulnerability

2016-01-1504:52:38
Gentoo Foundation
advisories.mageia.org
19

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

60.5%

JSON

A heap-based buffer overflow vulnerability was found in giffix utility of giflib when processing records of the type β€˜IMAGE_DESC_RECORD_TYPE’ due to the allocated size of β€˜LineBuffer’ equaling the value of the logical screen width, β€˜GifFileIn->SWidth’, while subsequently having β€˜GifFileIn->Image.Width’ bytes of data written to it (CVE-2015-7555).

OSVersionArchitecturePackageVersionFilename
Mageia5noarchgiflib<Β 4.2.3-4.2giflib-4.2.3-4.2.mga5

Related

fedora 2
ibm 1
openvas 8
nessus 15
prion 1
android 1
nvd 1
suse 1
debiancve 1
cvelist 1
debian 1
ubuntucve 1
cve 1
freebsd 1
rosalinux 1
androidsecurity 1
fedora
fedora
[SECURITY] Fedora 22 Update: mingw-giflib-5.0.5-4.fc22
2016-01-03 21:21:19
[SECURITY] Fedora 23 Update: mingw-giflib-5.0.5-4.fc23
2016-01-03 20:27:37
ibm
ibm
Security Bulletin: A vulnerability in giflib affects IBM Flex System Manager (FSM) (CVE-2015-7555)
2018-06-18 01:30:49
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:0192-1)
2021-06-09 00:00:00
Debian: Security Advisory (DLA-389-1)
2023-03-08 00:00:00
Mageia: Security Advisory (MGASA-2016-0020)
2016-01-15 00:00:00
nessus
nessus
openSUSE Security Update : giflib (openSUSE-2016-76)
2016-01-26 00:00:00
Fedora 22 : mingw-giflib-5.0.5-4.fc22 (2015-d423b3276f)
2016-03-04 00:00:00
Fedora 23 : mingw-giflib-5.0.5-4.fc23 (2015-44fb3501cc)
2016-03-04 00:00:00
prion
prion
Heap overflow
2016-04-13 15:59:00
android
android
CVE-2015-7555
2017-05-01 00:00:00
nvd
nvd
CVE-2015-7555
2016-04-13 15:59:03
suse
suse
Security update for giflib (important)
2016-01-22 19:11:33
debiancve
debiancve
CVE-2015-7555
2016-04-13 15:59:03
cvelist
cvelist
CVE-2015-7555
2016-04-13 15:00:00
debian
debian
[SECURITY] [DLA 389-1] giflib security update
2016-01-15 13:07:29
ubuntucve
ubuntucve
CVE-2015-7555
2016-04-13 00:00:00
cve
cve
CVE-2015-7555
2016-04-13 15:59:03
freebsd
freebsd
giflib -- heap overflow
2015-12-21 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1842
2021-07-02 16:45:05
androidsecurity
androidsecurity
Android Security Bulletinβ€”May 2017
2017-05-01 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

60.5%

JSON
Related for MGASA-2016-0020
fedora2ibm1openvas8nessus15prion1android1nvd1suse1debiancve1cvelist1debian1ubuntucve1cve1freebsd1rosalinux1androidsecurity1