Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2022-0275
HistoryAug 06, 2022 - 12:00 a.m.

Updated mingw-giflib packages fix security vulnerability

2022-08-0600:00:44
Gentoo Foundation
advisories.mageia.org
29
mingw-giflib
packages
security vulnerability
heap-buffer-overflow
giflib 5.2.1

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

44.4%

JSON

It was discovered that giflib 5.2.1 (including mingw-giflib which has giflib 5.2.1 bundled) contained a heap-buffer-overflow in function DumpScreen2RGB() (CVE-2022-28506).

OSVersionArchitecturePackageVersionFilename
Mageia8noarchmingw-giflib< 5.2.1-2.1mingw-giflib-5.2.1-2.1.mga8
Mageia8noarchgiflib< 5.2.1-5.1giflib-5.2.1-5.1.mga8

Related

fedora 3
openvas 13
debiancve 1
redhatcve 1
nvd 1
osv 3
prion 1
gitlab 1
nessus 11
alpinelinux 1
cvelist 1
ubuntucve 1
cbl_mariner 2
veracode 1
cve 1
redos 1
rosalinux 1
ubuntu 1
fedora
fedora
[SECURITY] Fedora 36 Update: giflib-5.2.1-14.fc36
2022-07-25 01:23:09
[SECURITY] Fedora 35 Update: mingw-giflib-5.2.1-7.fc35
2022-08-06 01:41:23
[SECURITY] Fedora 35 Update: giflib-5.2.1-9.fc35
2022-08-06 01:41:23
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0275)
2022-08-08 00:00:00
Fedora: Security Advisory for mingw-giflib (FEDORA-2022-91f353b8be)
2022-08-07 00:00:00
Huawei EulerOS: Security Advisory for giflib (EulerOS-SA-2022-2606)
2022-10-28 00:00:00
debiancve
debiancve
CVE-2022-28506
2022-04-25 13:15:49
redhatcve
redhatcve
CVE-2022-28506
2022-04-26 06:55:02
nvd
nvd
CVE-2022-28506
2022-04-25 13:15:49
osv
osv
CVE-2022-28506
2022-04-25 13:15:49
CGA-grwf-fxvc-rrc2
2024-06-06 12:27:32
giflib vulnerabilities
2024-06-10 14:27:14
prion
prion
Heap overflow
2022-04-25 13:15:00
gitlab
gitlab
Out-of-bounds Write
2022-04-25 00:00:00
nessus
nessus
EulerOS 2.0 SP5 : giflib (EulerOS-SA-2022-2267)
2022-08-17 00:00:00
EulerOS 2.0 SP8 : giflib (EulerOS-SA-2022-2458)
2022-10-09 00:00:00
EulerOS 2.0 SP9 : giflib (EulerOS-SA-2022-2314)
2022-09-14 00:00:00
alpinelinux
alpinelinux
CVE-2022-28506
2022-04-25 13:15:49
cvelist
cvelist
CVE-2022-28506
2022-04-25 12:53:01
ubuntucve
ubuntucve
CVE-2022-28506
2022-04-25 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-28506 affecting package giflib 5.2.1-5
2024-09-17 03:30:15
CVE-2022-28506 affecting package giflib 5.2.1-6
2024-09-17 03:30:15
veracode
veracode
Buffer Overflow
2022-11-03 12:08:00
cve
cve
CVE-2022-28506
2022-04-25 13:15:49
redos
redos
ROS-20230918-01
2023-09-18 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2434
2024-06-17 09:09:07
ubuntu
ubuntu
GIFLIB vulnerabilities
2024-06-10 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

44.4%

JSON
Related for MGASA-2022-0275
fedora3openvas13debiancve1redhatcve1nvd1osv3prion1gitlab1nessus11alpinelinux1cvelist1ubuntucve1cbl_mariner2veracode1cve1redos1rosalinux1ubuntu1