Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-2061: libnsgif: fix oob in lzw_decode · hpjansson/chafa@e6ce374

Heap-based Buffer Overflow in GitHub repository hpjansson/chafa prior to 1.12.0.

CVE
#git#buffer_overflow

Permalink

Browse files

libnsgif: fix oob in lzw_decode

  • Loading branch information

1 parent 56f1c73 commit e6ce3746cdcf0836b9dae659a5aed15d73a080d8

Showing 1 changed file with 4 additions and 0 deletions.

@@ -329,6 +329,10 @@ lzw_result lzw_decode(struct lzw_ctx *ctx,

/* Code is invalid */

return LZW_BAD_CODE;

} else if (code_new >= 1 << LZW_CODE_MAX) {

/* Don’t access out of bound */

return LZW_BAD_CODE;

} else if (code_new < current_entry) {

/* Code is in table */

code_out = code_new;

0 comments on commit e6ce374

Please sign in to comment.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda