{"id":"DEBIAN-CVE-2007-5378","details":"Buffer overflow in the FileReadGIF function in tkImgGIF.c for Tk Toolkit 8.4.12 and earlier, and 8.3.5 and earlier, allows user-assisted attackers to cause a denial of service (segmentation fault) via an animated GIF in which the first subimage is smaller than a subsequent subimage, which triggers the overflow in the ReadImage function, a different vulnerability than CVE-2007-5137.","modified":"2026-04-28T20:09:49.915070Z","published":"2007-10-12T01:17:00Z","upstream":["CVE-2007-5378"],"references":[{"type":"ADVISORY","url":"https://security-tracker.debian.org/tracker/CVE-2007-5378"}],"affected":[{"package":{"name":"libtk-img","ecosystem":"Debian:11","purl":"pkg:deb/debian/libtk-img?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.3-release-8"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-5378.json"}},{"package":{"name":"libtk-img","ecosystem":"Debian:12","purl":"pkg:deb/debian/libtk-img?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.3-release-8"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-5378.json"}},{"package":{"name":"libtk-img","ecosystem":"Debian:13","purl":"pkg:deb/debian/libtk-img?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.3-release-8"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-5378.json"}},{"package":{"name":"libtk-img","ecosystem":"Debian:14","purl":"pkg:deb/debian/libtk-img?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.3-release-8"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-5378.json"}}],"schema_version":"1.7.5"}