CVE-2015-8808

5.5 MEDIUM

Published: July 13, 2016 Modified: May 06, 2026

Description

The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted GIF file.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177834.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00032.html

Source: cve@mitre.org

http://marc.info/?l=graphicsmagick-commit&m=142283721604323&w=2

Source: cve@mitre.org

http://www.debian.org/security/2016/dsa-3746

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2016/02/06/1

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2016/02/06/3

Source: cve@mitre.org

http://www.securityfocus.com/bid/83058

Source: cve@mitre.org

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177834.html