#VU87207 Heap-based buffer overflow in GIFLIB - CVE-2022-28506


Vulnerability identifier: #VU87207

Vulnerability risk: High

CVSSv4.0: 5.7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2022-28506

CWE-ID: CWE-122

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
GIFLIB
Client/Desktop applications / Multimedia software

Vendor: GIFLIB Project

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the DumpScreen2RGB() function in gif2rgb.c. A remote attacker can pass specially crafted file to the application, trigger a heap-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

GIFLIB: 5.0.0 - 5.2.1

External links
https://sourceforge.net/p/giflib/bugs/159/
https://github.com/verf1sh/Poc/blob/master/asan_report_giflib.png
https://github.com/verf1sh/Poc/blob/master/giflib_poc

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Dell PowerStore T
Amazon Linux AMI update for giflib
SUSE update for giflib
Multiple vulnerabilities in Dell Cloud Tiering Appliance
Ubuntu update for giflib
SUSE update for giflib
Multiple vulnerabilities in giflib
Anolis OS update for giflib
Fedora 36 update for giflib
Fedora 35 update for giflib, mingw-giflib