VulnerableCode Package Details - pkg:deb/debian/netsurf@3.2%2Bdfsg-2

Search for packages

Vulnerability	Summary	Fixed by
VCID-8kz5-a7p1-jye9 Aliases: CVE-2015-7506	The gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted LZW stream in a GIF file.	3.6-3.1 Affected by 0 other vulnerabilities.
VCID-grv2-qb6h-eyc6 Aliases: CVE-2015-7508	Heap-based buffer overflow in the bmp_decode_rle function in libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the last row of RLE data in a crafted BMP file.	3.6-3.1 Affected by 0 other vulnerabilities.
VCID-jec8-qc5q-affk Aliases: CVE-2015-7507	libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read) via a crafted color table to the (1) bmp_decode_rgb or (2) bmp_decode_rle function.	3.6-3.1 Affected by 0 other vulnerabilities.
VCID-m67w-mzaf-duch Aliases: CVE-2014-3566		3.6-3.1 Affected by 0 other vulnerabilities.
VCID-qwuw-6rdd-3qht Aliases: CVE-2015-7505	Stack-based buffer overflow in the gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted LZW stream in a GIF file.	3.6-3.1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-8kz5-a7p1-jye9
Aliases:
CVE-2015-7506

The gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted LZW stream in a GIF file.