CVE-2020-19752
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2020-19752
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-19752.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2020-19752
- Related
- Published
- 2021-09-07T20:15:07Z
- Modified
- 2025-02-14T11:12:07.538967Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The findcoloror_error function in gifsicle 1.92 contains a NULL pointer dereference.
- References
-
- https://github.com/kohler/gifsicle/issues/140
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7H3ASG2BD4D4SAUUI6TOLUZYP2QYYHXY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DH7X7PGUN5BYXKW533DAX4KAEM4HPMJC/
- https://security-tracker.debian.org/tracker/CVE-2020-19752
Affected packages
Debian:11 / gifsicle
Package
- Name
- gifsicle
- Purl
- pkg:deb/debian/gifsicle?arch=source
Debian:12 / gifsicle
Package
- Name
- gifsicle
- Purl
- pkg:deb/debian/gifsicle?arch=source
Debian:13 / gifsicle
Package
- Name
- gifsicle
- Purl
- pkg:deb/debian/gifsicle?arch=source
Git / github.com/kohler/gifsicle
Affected ranges
- Type
- GIT
- Repo
- https://github.com/kohler/gifsicle
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
Affected versions
v1.*
v1.10
v1.10b1
v1.11
v1.11.1
v1.14.1
v1.15b
v1.18
v1.19
v1.21
v1.22
v1.24
v1.25
v1.26
v1.30
v1.35
v1.37
v1.38
v1.39
v1.40
v1.42
v1.43
v1.44
v1.45
v1.46
v1.47
v1.48
v1.50
v1.51
v1.52
v1.53
v1.54
v1.55
v1.56
v1.57
v1.58
v1.59
v1.60
v1.61
v1.62
v1.63
v1.64
v1.65
v1.66
v1.67
v1.68
v1.69
v1.70
v1.71
v1.72
v1.73
v1.74
v1.75
v1.76
v1.77
v1.78
v1.79
v1.80
v1.81
v1.82
v1.84
v1.85
v1.86
v1.87
v1.88
v1.89
v1.90
v1.91
v1.92