A double free vulnerability in the DDGifSlurp function in decoding.c in the android-gif-drawable library before version 1.2.18, as used in WhatsApp for Android before version 2.19.244 and many other Android applications, allows remote attackers to execute arbitrary code or cause a denial of service when the library is used to parse a specially crafted GIF image.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: facebook
Published: 2019-10-03T21:13:47
Updated: 2024-08-04T23:10:29.690Z
Reserved: 2019-05-13T00:00:00
Link: CVE-2019-11932
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-10-03T22:15:10.370
Modified: 2024-11-21T04:22:00.543
Link: CVE-2019-11932
Redhat
No data.