CVE-2015-8808

MEDIUM5.5EPSS 0.29%

graphicsmagick - security update

Published: 7/13/2016Modified: 4/28/2026

Description

The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted GIF file.

Affected packages (3)

Debian/graphicsmagickfrom 0, < 1.3.21-2
Debian/graphicsmagickfrom 0, < 1.3.16-1.1+deb7u1
Debian/graphicsmagickfrom 0, < 1.3.20-3+deb8u2

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM5.5	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-8808