Candidate: CVE-2022-1507
PublicDate: 2022-04-27 17:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1507
 https://huntr.dev/bounties/104d8c5d-cac5-4baa-9ac9-291ea0bcab95/
 https://github.com/hpjansson/chafa/commit/e4b777c7b7c144cd16a0ea96108267b1004fe6c9 (1.10.2)
 https://github.com/hpjansson/chafa/commit/e4b777c7b7c144cd16a0ea96108267b1004fe6c9
 https://huntr.dev/bounties/104d8c5d-cac5-4baa-9ac9-291ea0bcab95
Description:
 chafa: NULL Pointer Dereference in function gif_internal_decode_frame at
 libnsgif.c:599 allows attackers to cause a denial of service (crash) via a
 crafted input file. in GitHub repository hpjansson/chafa prior to 1.10.2.
 chafa: NULL Pointer Dereference in function gif_internal_decode_frame at
 libnsgif.c:599 allows attackers to cause a denial of service (crash) via a
 crafted input file.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:


Patches_chafa:
upstream_chafa: released (1.10.2-1)
focal_chafa: needs-triage
impish_chafa: needs-triage
jammy_chafa: needs-triage
devel_chafa: needs-triage