VulnerableCode Package Details - pkg:deb/debian/giflib@5.2.1-2.5?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
VCID-276w-96xc-5be1 Aliases: CVE-2021-40633	gif2rgb: gif2rgb memory leak	5.2.2-1 Affected by 0 other vulnerabilities.
VCID-c3n5-vvnd-3uc8 Aliases: CVE-2023-48161	Out-of-bounds Write Buffer Overflow vulnerability in GifLib Project GifLib v.5.2.1 allows a local attacker to obtain sensitive information via the DumpSCreen2RGB function in gif2rgb.c	5.2.2-1 Affected by 0 other vulnerabilities.
VCID-dv4g-b5vw-huf4 Aliases: CVE-2022-28506	Out-of-bounds Write There is a heap-buffer-overflow in GIFLIB 5.2.1 function DumpScreen2RGB() in gif2rgb.c:298:45.	5.2.2-1 Affected by 0 other vulnerabilities.
VCID-nz8n-htdu-k7gw Aliases: CVE-2020-23922	giflib: out-of-bounds read in DumpScreen2RGB() in gif2rgb.c in gif2rgb tool	5.2.2-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-276w-96xc-5be1
Aliases:
CVE-2021-40633

gif2rgb: gif2rgb memory leak

5.2.2-1
Affected by 0 other vulnerabilities.

VCID-c3n5-vvnd-3uc8
Aliases:
CVE-2023-48161

Out-of-bounds Write Buffer Overflow vulnerability in GifLib Project GifLib v.5.2.1 allows a local attacker to obtain sensitive information via the DumpSCreen2RGB function in gif2rgb.c

5.2.2-1
Affected by 0 other vulnerabilities.

VCID-dv4g-b5vw-huf4
Aliases:
CVE-2022-28506

Out-of-bounds Write There is a heap-buffer-overflow in GIFLIB 5.2.1 function DumpScreen2RGB() in gif2rgb.c:298:45.

5.2.2-1
Affected by 0 other vulnerabilities.

VCID-nz8n-htdu-k7gw
Aliases:
CVE-2020-23922

giflib: out-of-bounds read in DumpScreen2RGB() in gif2rgb.c in gif2rgb tool

5.2.2-1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-5byx-7b2n-hkdh	giflib may dereference NULL or write out of bounds when processing malformed images, potentially resulting in Denial of Service or arbitrary code execution.	CVE-2005-3350
VCID-6uh1-fjn3-6kc7	giflib may dereference NULL or write out of bounds when processing malformed images, potentially resulting in Denial of Service or arbitrary code execution.	CVE-2005-2974
VCID-9vjz-q2h7-xueb	giflib: heap-based buffer overflow in DGifDecompressLine function in dgif_lib.c	CVE-2018-11490
VCID-cy1u-z2ns-c3fu	giflib: Use-after-free in gifcolor utility	CVE-2016-3177
VCID-er2y-2gp1-6uge	giflib: heap-based buffer overflow in DGifDecompressLine function in dgif_lib.c	CVE-2018-11489
VCID-p33t-h9n1-h3ck	giflib: divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c	CVE-2019-15133
VCID-qcj7-sct6-w7ey	giflib: Heap-based buffer overflow in giffix utility	CVE-2015-7555
VCID-wtm9-uuux-dqcc	giflib: heap buffer overflow in gif2rgb	CVE-2016-3977

Vulnerability

Summary

Aliases

VCID-5byx-7b2n-hkdh

giflib may dereference NULL or write out of bounds when processing malformed images, potentially resulting in Denial of Service or arbitrary code execution.

CVE-2005-3350

VCID-6uh1-fjn3-6kc7

giflib may dereference NULL or write out of bounds when processing malformed images, potentially resulting in Denial of Service or arbitrary code execution.

CVE-2005-2974

VCID-9vjz-q2h7-xueb

giflib: heap-based buffer overflow in DGifDecompressLine function in dgif_lib.c

CVE-2018-11490

VCID-cy1u-z2ns-c3fu

giflib: Use-after-free in gifcolor utility

CVE-2016-3177

VCID-er2y-2gp1-6uge

giflib: heap-based buffer overflow in DGifDecompressLine function in dgif_lib.c

CVE-2018-11489

VCID-p33t-h9n1-h3ck

giflib: divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c

CVE-2019-15133

VCID-qcj7-sct6-w7ey

giflib: Heap-based buffer overflow in giffix utility

CVE-2015-7555

VCID-wtm9-uuux-dqcc

giflib: heap buffer overflow in gif2rgb

CVE-2016-3977

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:51:13.981081+00:00	Debian Importer	Fixing	VCID-er2y-2gp1-6uge	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:36:05.389802+00:00	Debian Importer	Fixing	VCID-9vjz-q2h7-xueb	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:02:12.176013+00:00	Debian Importer	Fixing	VCID-p33t-h9n1-h3ck	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:18:47.318534+00:00	Debian Importer	Fixing	VCID-5byx-7b2n-hkdh	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:08:36.064815+00:00	Debian Importer	Fixing	VCID-cy1u-z2ns-c3fu	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:57:33.188796+00:00	Debian Importer	Fixing	VCID-qcj7-sct6-w7ey	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:28:28.199090+00:00	Debian Importer	Fixing	VCID-wtm9-uuux-dqcc	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:44:13.738912+00:00	Debian Importer	Fixing	VCID-6uh1-fjn3-6kc7	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:49:18.585877+00:00	Debian Importer	Fixing	VCID-er2y-2gp1-6uge	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:37:55.790199+00:00	Debian Importer	Fixing	VCID-9vjz-q2h7-xueb	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:13:22.896072+00:00	Debian Importer	Fixing	VCID-p33t-h9n1-h3ck	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:41:52.352002+00:00	Debian Importer	Fixing	VCID-5byx-7b2n-hkdh	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:48:46.346042+00:00	Debian Importer	Fixing	VCID-cy1u-z2ns-c3fu	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:40:14.496866+00:00	Debian Importer	Fixing	VCID-qcj7-sct6-w7ey	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:19:04.320492+00:00	Debian Importer	Fixing	VCID-wtm9-uuux-dqcc	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:52:11.554424+00:00	Debian Importer	Fixing	VCID-6uh1-fjn3-6kc7	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:24:38.917864+00:00	Debian Importer	Affected by	VCID-c3n5-vvnd-3uc8	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:24:38.885165+00:00	Debian Importer	Affected by	VCID-dv4g-b5vw-huf4	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:24:38.860655+00:00	Debian Importer	Affected by	VCID-276w-96xc-5be1	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:24:38.835215+00:00	Debian Importer	Affected by	VCID-nz8n-htdu-k7gw	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:24:38.786764+00:00	Debian Importer	Fixing	VCID-p33t-h9n1-h3ck	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:24:38.743985+00:00	Debian Importer	Fixing	VCID-9vjz-q2h7-xueb	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:24:38.701406+00:00	Debian Importer	Fixing	VCID-er2y-2gp1-6uge	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:24:38.659097+00:00	Debian Importer	Fixing	VCID-wtm9-uuux-dqcc	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:24:38.620448+00:00	Debian Importer	Fixing	VCID-cy1u-z2ns-c3fu	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:24:38.580605+00:00	Debian Importer	Fixing	VCID-qcj7-sct6-w7ey	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:24:38.538327+00:00	Debian Importer	Fixing	VCID-5byx-7b2n-hkdh	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:24:38.493676+00:00	Debian Importer	Fixing	VCID-6uh1-fjn3-6kc7	https://security-tracker.debian.org/tracker/data/json	38.1.0