Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 40: FEDORA-2025-7d0fc65561 critical: giflib buffer overflow

fedora
Calendar Grey May 1, 2025
Dist Fedora Esm H88
A backport has been implemented to fix the giflib buffer overflow issue in Fedora 40, providing essential installation and update steps
Backport proposed fix for CVE-2025-31344 from OpenMandriva.

Summary

giflib is a library for reading and writing gif images.

Update Information:

Backport proposed fix for CVE-2025-31344 from OpenMandriva.

Topics%20covered

Topics Covered

security advisory update buffer overflow Fedora fix giflib

Change Log

* Tue Apr 15 2025 Sandro Mani - 5.2.2-6 - Add proposed patch for CVE-2025-31334 * Wed Apr 2 2025 Benson Muite - 5.2.2-5 - Rename getarg.h to gif_getarg.h * Wed Apr 2 2025 Benson Muite - 5.2.2-4 - Install getarg.h header file * Thu Jan 16 2025 Fedora Release Engineering - 5.2.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Thu Jul 18 2024 Fedora Release Engineering - 5.2.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild

References


[ 1 ] Bug #2359431 - CVE-2025-31344 giflib: The giflib open-source component has a buffer overflow vulnerability [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2359431 [ 2 ] Bug #2359442 - CVE-2025-31344 giflib: The giflib open-source component has a buffer overflow vulnerability [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2359442

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-7d0fc65561' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: giflib
Product: Fedora 40
Version: 5.2.2
Release: 6.fc40
URL: https://sourceforge.net/projects/giflib/
Summary: A library and utilities for processing GIFs

Topics%20covered

Topics Covered

security advisory update buffer overflow Fedora fix giflib

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here