Red Hat Bugzilla – Bug 494826
CVE-2005-2974 giflib/libunfig: NULL pointer dereference crash
Last modified: 2016-03-04 06:09:58 EST
Common Vulnerabilities and Exposures assigned an identifier CVE-2005-2974 to the following vulnerability:
libungif library before 4.1.0 allows attackers to cause a denial of service via
a crafted GIF file that triggers a null dereference.
Created attachment 338678 [details]
Chris Evans' PoC - bad1.gif
This issue has been addressed in following products:
Red Hat Enterprise Linux 5
Via RHSA-2009:0444 https://rhn.redhat.com/errata/RHSA-2009-0444.html
giflib-4.1.3-10.fc9 has been submitted as an update for Fedora 9.
giflib-4.1.3-10.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
giflib-4.1.6-2.fc10 has been pushed to the Fedora 10 stable repository. If problems still persist, please make note of it in this bug report.