CVE-2024-41131: SixLabors ImageSharp Out-of-bounds Write
An Out-of-bounds Write vulnerability has been found in the ImageSharp gif decoder, allowing attackers to cause a crash using a specially crafted gif. This can potentially lead to denial of service.
References
- github.com/SixLabors/ImageSharp
- github.com/SixLabors/ImageSharp/commit/9dda64a8186af67baf06b6d9c1ab599c3608b693
- github.com/SixLabors/ImageSharp/commit/a1f287977139109a987065643b8172c748abdadb
- github.com/SixLabors/ImageSharp/pull/2754
- github.com/SixLabors/ImageSharp/pull/2756
- github.com/SixLabors/ImageSharp/security/advisories/GHSA-63p8-c4ww-9cg7
- github.com/advisories/GHSA-63p8-c4ww-9cg7
- nvd.nist.gov/vuln/detail/CVE-2024-41131
Code Behaviors & Features
Detect and mitigate CVE-2024-41131 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →