CVE-2026-8669— Imager versions through 1.030 for Perl allow a heap out of bounds (OOB) write on crafted multi-frame GIF files
Possible ATT&CK Techniques 1AI
T1190 · Exploit Public-Facing ApplicationGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-8669
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Imager versions through 1.030 for Perl allow a heap out of bounds (OOB) write on crafted multi-frame GIF files
Source: NVD (National Vulnerability Database)
Vulnerability Description
Imager versions through 1.030 for Perl allow a heap out of bounds (OOB) write on crafted multi-frame GIF files. Imager::File::GIF's i_readgif_multi_low allocates a single per-row buffer GifRow sized for the GIF's global screen width 'SWidth' and reuses it across every image in the file. The page-match branch validates Image.Width + Image.Left > SWidth before each DGifGetLine write, but the parallel skip-image branch at imgif.c:790-805 calls DGifGetLine(GifFile, GifRow, Width) with no such check.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨界内存写
Source: NVD (National Vulnerability Database)
Vulnerability Title
Imager 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Imager是Tony Cook个人开发者的一个图像处理程序。 Imager 1.030及之前版本存在缓冲区错误漏洞,该漏洞源于Imager::File::GIF的i_readgif_multi_low函数分配单个每行缓冲区GifRow,其大小基于GIF全局屏幕宽度SWidth并在文件中每个图像间重用,跳过图像分支在调用DGifGetLine时未进行宽度检查,可能导致在特制多帧GIF文件上发生堆越界写入。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-8669
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-8669
请登录查看更多情报信息。
Patches & Fixes for CVE-2026-8669 (1)
Other References for CVE-2026-8669 (1)
IV. Related Vulnerabilities
Same weakness: CWE-787
- CVE-2026-45253
Missing validation in ptrace(PT_SC_REMOTE) - CVE-2026-44062
Missing o_len bounds check in pull_charset_flags() - CVE-2026-44049
Out-of-bounds write in convert_charset() null termination - CVE-2026-24188
NVIDIA TensorRT 缓冲区错误漏洞 - CVE-2026-32740
libheif: Heap-Buffer-Overflow Write in Grid Tile Chroma Comp
V. Comments for CVE-2026-8669
No comments yet