Segmentation Fault Vulnerability in ngiflib by MiniUPnP
CVE-2018-11578

6.5MEDIUM

Key Information:

Vendor: Miniupnp Project
Status: Ngiflib
Vendor: CVE Published:; 31 May 2018

🔔 Create Miniupnp Project Vulnerability Alert

What is CVE-2018-11578?

The vulnerability in ngiflib version 0.4 manifests as a segmentation fault due to improper handling of GIF indexing which can lead to application instability. This flaw is reported to occur within the GifIndexToTrueColor function located in ngiflib.c. Developers should address this vulnerability to ensure robust performance and prevent potential crashes.

References

https://github.com/miniupnp/ngiflib/issues/5

x_refsource_MISC

https://github.com/Edward-L/fuzzing-pocs/tree/master/ngiflib

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 31, 2018
Vulnerability Reserved
May 30, 2018

CVE-2018-11578 Data

JSON