CVE-2026-23868
MediumCVSS 5.1Exploitation Probability (EPSS)
Low risk4th percentile - higher than 4% of all known CVEs
Summary
Giflib contains a double-free vulnerability resulting from a shallow copy in GifMakeSavedImage and improper error handling. The conditions to trigger this vulnerability are difficult but possible.
Risk Assessment
The risk for the organization includes application crashes or arbitrary code execution if the vulnerability is successfully exploited, potentially leading to system integrity compromise.
Recommendation
It is recommended to update Giflib to the latest patched version and monitor vendor security advisories.
Original NVD description (English source)
Giflib contains a double-free vulnerability that is the result of a shallow copy in GifMakeSavedImage and incorrect error handling. The conditions needed to trigger this vulnerability are difficult but may be possible.

