CVE-2023-48161: Buffer Overflow
First published: Wed Nov 22 2023(Updated: )
Buffer Overflow vulnerability in GifLib Project GifLib v.5.2.1 allows a local attacker to obtain sensitive information via the DumpSCreen2RGB function in gif2rgb.c
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| GifLib Project GifLib | =5.2.1 | |
| redhat/GifLib | <5.2.1 | 5.2.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://github.com/tacetool/TACE#cve-2023-48161
- https://sourceforge.net/p/giflib/bugs/167/
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2251139
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2251140
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2251141
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2251142
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2251143
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2251144
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2251137
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2251145
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2251138
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2251146
- https://access.redhat.com/errata/RHSA-2024:8120
- https://access.redhat.com/errata/RHSA-2024:8121
- https://access.redhat.com/errata/RHSA-2024:8127
- https://access.redhat.com/errata/RHSA-2024:8118
- https://access.redhat.com/errata/RHSA-2024:8123
- https://access.redhat.com/errata/RHSA-2024:8119
- https://access.redhat.com/errata/RHSA-2024:8125
- https://access.redhat.com/errata/RHSA-2024:8126
- https://access.redhat.com/errata/RHSA-2024:8128
- https://access.redhat.com/errata/RHSA-2024:8129
- https://access.redhat.com/errata/RHSA-2024:8124
- https://access.redhat.com/errata/RHSA-2024:8117
- https://access.redhat.com/errata/RHSA-2024:8116
- https://bugzilla.redhat.com/show_bug.cgi?id=2251025
Frequently Asked Questions
What is CVE-2023-48161?
CVE-2023-48161 is a buffer overflow vulnerability in GifLib Project GifLib v.5.2.1, which allows a local attacker to obtain sensitive information.
What is the severity of CVE-2023-48161?
The severity of CVE-2023-48161 is high, with a severity value of 7.1.
What software is affected by CVE-2023-48161?
GifLib Project GifLib version 5.2.1 is affected by CVE-2023-48161.
How can a local attacker exploit CVE-2023-48161?
A local attacker can exploit CVE-2023-48161 by using the DumpSCreen2RGB function in gif2rgb.c to obtain sensitive information.
Are there any references or resources related to CVE-2023-48161?
Yes, you can find more information about CVE-2023-48161 in the following references: [link1](https://sourceforge.net/p/giflib/bugs/167/), [link2](https://github.com/tacetool/TACE#cve-2023-48161).
- collector/nvd-api
- agent/type
- agent/event
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/references
- agent/softwarecombine
- agent/tags
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-48161
- agent/software-canonical-lookup
- vendor/giflib project
- canonical/giflib project giflib
- version/giflib project giflib/5.2.1
- package-manager/redhat