Bug 971555 (CVE-2016-3177) - VUL-0: CVE-2016-3177: giflib: Use-after-free in gifcolor
Summary: VUL-0: CVE-2016-3177: giflib: Use-after-free in gifcolor
Status: RESOLVED INVALID
Alias: CVE-2016-3177
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Fridrich Strba
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/163480/
Whiteboard: CVSSv2:RedHat:CVE-2016-3177:3.3:(AV:...
Keywords:
Depends on:
Blocks:
 
Reported: 2016-03-17 09:41 UTC by Victor Pereira
Modified: 2016-03-22 13:51 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Victor Pereira 2016-03-17 09:41:28 UTC 
CVE-2016-3177

Multiples double-free / use-after-free (with the same root origin) were
reported in giflib (https://sourceforge.net/projects/giflib/) on
February 18.
It affects the utility gifcolor. More information here:
https://sourceforge.net/p/giflib/bugs/83/
The fixed version should be release soon.

Since the vuln is medium/severe (double-free/use-after-free), but the
attack surface is low (it affects only gifcolor, no the lib itself),
could it be possible to receive a CVE number for it ?

It was found with the help of the static analyzer GUEB.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-3177
http://seclists.org/oss-sec/2016/q1/663
Comment 1 Victor Pereira 2016-03-17 09:42:37 UTC 
looks like we don't ship gifcolor. Can you confirm it, Fridrich?
Comment 2 Fridrich Strba 2016-03-17 14:38:43 UTC 
(In reply to Victor Pereira from comment #1)
> looks like we don't ship gifcolor. Can you confirm it, Fridrich?

Indeed, we don't ship that tool. So, we don't have to patch it urgently.
Comment 3 Swamp Workflow Management 2016-03-17 23:00:15 UTC 
bugbot adjusting priority
Comment 4 Victor Pereira 2016-03-22 13:51:56 UTC 
we don't ship gifcolor.