CVE-2022-23435

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-23435
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-23435.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-23435
Aliases
Published
2022-01-19T01:15:09.747Z
Modified
2026-02-06T22:12:47.025916Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

decoding.c in android-gif-drawable before 1.2.24 does not limit the maximum length of a comment, leading to denial of service.

References

Affected packages

Git / github.com/koral--/android-gif-drawable

Affected ranges

Type
GIT
Repo
https://github.com/koral--/android-gif-drawable
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
9f0f0c89e6fa38548163771feeb4bde84b828887

Database specific

vanir_signatures 
[
    {
        "id": "CVE-2022-23435-157ada6e",
        "signature_version": "v1",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "129823501033511240129047824089354369775",
                "316193249013358743226091813887949898530",
                "60714204790306486470492009225635403660",
                "52123304688088156956192345558888218494",
                "46038213712840512898127352381227602308",
                "252014771493387578434026301065289782225",
                "22236143923408314898103502069118509635",
                "211131470429896384312664607067992137494",
                "280558655947406488351717893498674248663",
                "76245982527847464765038419948934828597"
            ]
        },
        "deprecated": false,
        "source": "https://github.com/koral--/android-gif-drawable/commit/9f0f0c89e6fa38548163771feeb4bde84b828887",
        "signature_type": "Line",
        "target": {
            "file": "android-gif-drawable/src/main/c/decoding.c"
        }
    },
    {
        "id": "CVE-2022-23435-8e144436",
        "signature_version": "v1",
        "digest": {
            "function_hash": "48138415240480838434146030969822863130",
            "length": 481.0
        },
        "deprecated": false,
        "source": "https://github.com/koral--/android-gif-drawable/commit/9f0f0c89e6fa38548163771feeb4bde84b828887",
        "signature_type": "Function",
        "target": {
            "file": "android-gif-drawable/src/main/c/decoding.c",
            "function": "getComment"
        }
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-23435.json"