CVE-2026-23868

MEDIUM 5.1

CVSS Score

5.1

EPSS Score

0.0%

EPSS Percentile

0th

Giflib contains a double-free vulnerability that is the result of a shallow copy in GifMakeSavedImage and incorrect error handling. The conditions needed to trigger this vulnerability are difficult but may be possible.

Vendor	giflib
Product	giflib
Published	Mar 10, 2026
Last Updated	Mar 11, 2026

Stay Ahead of the Next One

Get instant alerts for giflib giflib

Be the first to know when new medium vulnerabilities affecting giflib giflib are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

giflib / giflib

5.0.0 ≤ 6.1.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

facebook.com: https://www.facebook.com/security/advisories/cve-2026-23868 sourceforge.net: https://sourceforge.net/p/giflib/code/ci/f5b7267aed3665ef025c13823e454170d031c106/tree/gifalloc.c?diff=5146815377b7395944cb683a08c43eee3f631eb7