{"id":"ASB-A-355461643","details":"In DGifSlurp of dgif_lib.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.","aliases":["A-355461643","CVE-2024-49749"],"modified":"2026-04-23T15:15:38.048727Z","published":"2025-01-01T00:00:00Z","references":[{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2025-01-01"},{"type":"FIX","url":"https://android.googlesource.com/platform/external/giflib/+/3281e14f6b9b85473145ee0ae33b8d4b8fbabffe"}],"affected":[{"package":{"name":"platform/external/giflib","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12:0"},{"fixed":"12:2025-01-01"}]}],"versions":["12"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/external/giflib/+/a6ede43ad88693f782f3a6c5b8b9b9c451151ac7"],"types":["RCE"],"severity":"High","vanir_signatures":[{"source":"https://android.googlesource.com/platform/external/giflib/+/a6ede43ad88693f782f3a6c5b8b9b9c451151ac7","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["145545243029665492469307439066663348100","247173508309223739576703352666447834488","204274942837119031254991323911169217908","137446051655739251263945009831409295757","55979599926335733727889751349724083980"]},"target":{"file":"dgif_lib.c"},"id":"ASB-A-355461643-2fc1c16d","deprecated":false,"signature_type":"Line"},{"source":"https://android.googlesource.com/platform/external/giflib/+/a6ede43ad88693f782f3a6c5b8b9b9c451151ac7","signature_version":"v1","digest":{"length":2358,"function_hash":"321314247917705348317388982420617262524"},"target":{"function":"DGifSlurp","file":"dgif_lib.c"},"id":"ASB-A-355461643-d958034a","deprecated":false,"signature_type":"Function"}],"spl":"2025-01-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-355461643.json"}},{"package":{"name":"platform/external/giflib","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"12L:0"},{"fixed":"12L:2025-01-01"}]}],"versions":["12L"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/external/giflib/+/2cd3a5fbc14d8b42d3bcce1c4cd19b1221f1473b"],"types":["RCE"],"severity":"High","vanir_signatures":[{"source":"https://android.googlesource.com/platform/external/giflib/+/2cd3a5fbc14d8b42d3bcce1c4cd19b1221f1473b","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["145545243029665492469307439066663348100","247173508309223739576703352666447834488","204274942837119031254991323911169217908","137446051655739251263945009831409295757","55979599926335733727889751349724083980"]},"target":{"file":"dgif_lib.c"},"id":"ASB-A-355461643-91b2cee9","deprecated":false,"signature_type":"Line"},{"source":"https://android.googlesource.com/platform/external/giflib/+/2cd3a5fbc14d8b42d3bcce1c4cd19b1221f1473b","signature_version":"v1","digest":{"length":2358,"function_hash":"321314247917705348317388982420617262524"},"target":{"function":"DGifSlurp","file":"dgif_lib.c"},"id":"ASB-A-355461643-9e15285d","deprecated":false,"signature_type":"Function"}],"spl":"2025-01-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-355461643.json"}},{"package":{"name":"platform/external/giflib","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"15:0"},{"fixed":"15:2025-01-01"}]}],"versions":["15"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/external/giflib/+/4d26271e7c3ae2f6abe34591e1818d1fbe3aa194"],"types":["RCE"],"severity":"High","spl":"2025-01-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-355461643.json"}},{"package":{"name":"platform/external/giflib","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"13:0"},{"fixed":"13:2025-01-01"}]}],"versions":["13"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/external/giflib/+/f3ca2dbb3ea30e70971c116046868009a1e0957a"],"types":["RCE"],"severity":"High","vanir_signatures":[{"source":"https://android.googlesource.com/platform/external/giflib/+/f3ca2dbb3ea30e70971c116046868009a1e0957a","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["145545243029665492469307439066663348100","247173508309223739576703352666447834488","204274942837119031254991323911169217908","137446051655739251263945009831409295757","55979599926335733727889751349724083980"]},"target":{"file":"dgif_lib.c"},"id":"ASB-A-355461643-13c87b23","deprecated":false,"signature_type":"Line"},{"source":"https://android.googlesource.com/platform/external/giflib/+/f3ca2dbb3ea30e70971c116046868009a1e0957a","signature_version":"v1","digest":{"length":2358,"function_hash":"321314247917705348317388982420617262524"},"target":{"function":"DGifSlurp","file":"dgif_lib.c"},"id":"ASB-A-355461643-31ca2fd6","deprecated":false,"signature_type":"Function"}],"spl":"2025-01-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-355461643.json"}},{"package":{"name":"platform/external/giflib","ecosystem":"Android"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"14:0"},{"fixed":"14:2025-01-01"}]}],"versions":["14"],"ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/external/giflib/+/7d49b5f7fa6f5e6900abf480045e1f9e07a21223"],"types":["RCE"],"severity":"High","spl":"2025-01-01"},"database_specific":{"source":"https://storage.googleapis.com/android-osv/ASB-A-355461643.json"}}],"schema_version":"1.7.5"}