CVE-2019-15133

Sažetak

In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero.

Reference

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13008
https://usn.ubuntu.com/4107-1/
https://lists.debian.org/debian-lts-announce/2022/12/msg00008.html

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

03-02-2023 - 18:52

Objavljeno

17-08-2019 - 18:15