Upstream issue:

https://sourceforge.net/p/giflib/bugs/167/

No upstream fix yet.

Same issue and fix as of bug 1198880. Closing as duplicate.

*** This bug has been marked as a duplicate of bug 1198880 ***

SUSE-SU-2024:0786-1: An update that solves three vulnerabilities can now be installed.

Category: security (important)
Bug References: 1198880, 1200551, 1217390
CVE References: CVE-2021-40633, CVE-2022-28506, CVE-2023-48161
Sources used:
openSUSE Leap 15.5 (src): giflib-5.2.2-150000.4.13.1
Basesystem Module 15-SP5 (src): giflib-5.2.2-150000.4.13.1
SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (src): giflib-5.2.2-150000.4.13.1
SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (src): giflib-5.2.2-150000.4.13.1
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (src): giflib-5.2.2-150000.4.13.1
SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (src): giflib-5.2.2-150000.4.13.1
SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (src): giflib-5.2.2-150000.4.13.1
SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (src): giflib-5.2.2-150000.4.13.1
SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (src): giflib-5.2.2-150000.4.13.1
SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (src): giflib-5.2.2-150000.4.13.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2 (src): giflib-5.2.2-150000.4.13.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3 (src): giflib-5.2.2-150000.4.13.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4 (src): giflib-5.2.2-150000.4.13.1
SUSE Manager Proxy 4.3 (src): giflib-5.2.2-150000.4.13.1
SUSE Manager Retail Branch Server 4.3 (src): giflib-5.2.2-150000.4.13.1
SUSE Manager Server 4.3 (src): giflib-5.2.2-150000.4.13.1
SUSE Enterprise Storage 7.1 (src): giflib-5.2.2-150000.4.13.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.