chafa: NULL Pointer Dereference in function gif_internal_decode_frame at libnsgif.c:599 allows attackers to cause a denial of service (crash) via a crafted input file. in GitHub repository hpjansson/chafa prior to 1.10.2. chafa: NULL Pointer Dereference in function gif_internal_decode_frame at libnsgif.c:599 allows attackers to cause a denial of service (crash) via a crafted input file.
References
Configurations
History
07 Nov 2023, 03:41
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
01 Jul 2022, 18:55
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:* |
|
First Time |
Fedoraproject
Fedoraproject fedora |
|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3PLHKTQYK6AO3M5NAVM3CDVQTZZS6MCO/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DIOAZPITFL2Y7Y6KHCZ4OIK7P7KWFN22/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L54UEP5S254VP5FZWGFPHLTPMFJVOGYT/ - Mailing List, Third Party Advisory |
16 May 2022, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
06 May 2022, 15:45
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-476 | |
First Time |
Chafa Project chafa
Chafa Project |
|
CVSS |
v2 : v3 : |
v2 : 4.3
v3 : 5.5 |
CPE | cpe:2.3:a:chafa_project:chafa:*:*:*:*:*:*:*:* | |
References | (CONFIRM) https://huntr.dev/bounties/104d8c5d-cac5-4baa-9ac9-291ea0bcab95 - Exploit, Issue Tracking, Patch, Third Party Advisory | |
References | (MISC) https://github.com/hpjansson/chafa/commit/e4b777c7b7c144cd16a0ea96108267b1004fe6c9 - Patch, Third Party Advisory |
27 Apr 2022, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-04-27 17:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-1507
Mitre link : CVE-2022-1507
CVE.ORG link : CVE-2022-1507
JSON object : View
Products Affected
chafa_project
- chafa
fedoraproject
- fedora
CWE
CWE-476
NULL Pointer Dereference