Denial of Service in ImageSharp Graphics Library by SixLabors
CVE-2025-54575
Currently unrated
What is CVE-2025-54575?
A vulnerability in the ImageSharp graphics library can allow a specially crafted GIF file to induce an infinite loop in the GIF decoder when handling a malformed comment extension block. This issue impacts versions below 2.1.11 and those between 3.0.0 and 3.1.10, leading to potential denial of service for applications that process untrusted GIF inputs. Users are advised to upgrade to patched versions 2.1.11 or 3.1.11 to mitigate this risk.