CVE-2025-31344

HIGH EPSS 12.3%
Published Apr 14, 20251y ago · Modified Jun 17, 20261w ago
7.3 CVSS 3.1
High
Find Similar
Published Apr 14, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

Heap-based Buffer Overflow vulnerability in openEuler giflib on Linux. This vulnerability is associated with program files gif2rgb.C. This issue affects giflib: through 5.2.2.

CVSS Details

Base Score
7.3
Exploitability
2.5
Impact
4.7
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality Low
Integrity Low
Availability High

Threat Intelligence

EPSS Exploit Probability
12.3% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-122

References 10

  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/07/3
  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/07/4
  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/07/5
  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/07/6
  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/08/1
  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/09/5
  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/09/7
  • openwall.com http://www.openwall.com/lists/oss-security/2025/04/10/1
  • gitee.com https://gitee.com/src-openeuler/giflib/pulls/54
  • openeuler.org https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1292

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.