Vulnerabilities > CVE-2022-23435 - Unspecified vulnerability in Android-Gif-Drawable Project Android-Gif-Drawable
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
decoding.c in android-gif-drawable before 1.2.24 does not limit the maximum length of a comment, leading to denial of service.
Vulnerable Configurations
References
- https://github.com/koral--/android-gif-drawable/commit/9f0f0c89e6fa38548163771feeb4bde84b828887
- https://github.com/koral--/android-gif-drawable/commit/9f0f0c89e6fa38548163771feeb4bde84b828887
- https://github.com/koral--/android-gif-drawable/compare/v1.2.23...v1.2.24
- https://github.com/koral--/android-gif-drawable/compare/v1.2.23...v1.2.24