CVE Catalog

CVE-2026-23868

MediumCVSS 5.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.14%

4th percentile - higher than 4% of all known CVEs

Summary

Giflib contains a double-free vulnerability resulting from a shallow copy in GifMakeSavedImage and improper error handling. The conditions to trigger this vulnerability are difficult but possible.

Risk Assessment

The risk for the organization includes application crashes or arbitrary code execution if the vulnerability is successfully exploited, potentially leading to system integrity compromise.

Recommendation

It is recommended to update Giflib to the latest patched version and monitor vendor security advisories.

Original NVD description (English source)

Giflib contains a double-free vulnerability that is the result of a shallow copy in GifMakeSavedImage and incorrect error handling. The conditions needed to trigger this vulnerability are difficult but may be possible.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS