Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2007-2756HistoryMay 18, 2007 - 6:30 p.m.
CVE-2007-2756
2007-05-1818:30:00
Debian Security Bug Tracker
security-tracker.debian.org
10
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.058 Low
EPSS
Percentile
93.3%
The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libgd2 | < 2.0.35.dfsg-1 | libgd2_2.0.35.dfsg-1_all.deb |
| Debian | 11 | all | libgd2 | < 2.0.35.dfsg-1 | libgd2_2.0.35.dfsg-1_all.deb |
| Debian | 10 | all | libgd2 | < 2.0.35.dfsg-1 | libgd2_2.0.35.dfsg-1_all.deb |
| Debian | 999 | all | libgd2 | < 2.0.35.dfsg-1 | libgd2_2.0.35.dfsg-1_all.deb |
| Debian | 13 | all | libgd2 | < 2.0.35.dfsg-1 | libgd2_2.0.35.dfsg-1_all.deb |
Related
nessus
nessus
openSUSE 10 Security Update : gd (gd-3747)
2007-10-17 00:00:00
SuSE 10 Security Update : gd (ZYPP Patch Number 3748)
2007-12-13 00:00:00
Mandrake Linux Security Advisory : tetex (MDKSA-2007:124)
2007-06-14 00:00:00
openvas
openvas
Mandriva Update for tetex MDKSA-2007:124 (tetex)
2009-04-09 00:00:00
Mandriva Update for gd MDKSA-2007:122 (gd)
2009-04-09 00:00:00
Mandriva Update for libwmf MDKSA-2007:123 (libwmf)
2009-04-09 00:00:00
prion
prion
Code injection
2007-05-18 18:30:00
securityvulns
securityvulns
libgd PNG DoS
2007-06-14 00:00:00
[Full-disclosure] [ MDKSA-2007:122 ] - Updated gd packages fix vulnerability
2007-06-14 00:00:00
[OpenPKG-SA-2007.020] OpenPKG Security Advisory (php)
2007-06-01 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:20:27
cve
cve
CVE-2007-2756
2007-05-18 18:30:00
ubuntucve
ubuntucve
CVE-2007-2756
2007-05-18 00:00:00
ubuntu
ubuntu
libgd2 vulnerabilities
2007-06-12 00:00:00
slackware
slackware
[slackware-security] php5
2007-06-01 21:19:18
[slackware-security] libwmf
2018-05-01 01:19:49
osv
osv
libgd2 - multiple vulnerabilities
2008-07-22 00:00:00
oraclelinux
oraclelinux
Moderate: php security update
2007-09-26 00:00:00
Moderate: gd security update
2008-02-28 00:00:00
Moderate: php security update
2007-09-20 00:00:00
redhat
redhat
(RHSA-2007:0891) Moderate: php security update
2007-10-25 00:00:00
(RHSA-2007:0890) Moderate: php security update
2007-09-20 00:00:00
(RHSA-2008:0146) Moderate: gd security update
2008-02-28 00:00:00
centos
centos
gd security update
2008-02-28 19:35:25
php security update
2007-09-20 14:31:37
php security update
2007-09-26 09:03:28
fedora
fedora
[SECURITY] Fedora Core 6 Update: php-5.1.6-3.7.fc6
2007-09-24 20:33:40
gentoo
gentoo
GD: Multiple vulnerabilities
2007-08-09 00:00:00
PHP: Multiple vulnerabilities
2007-10-07 00:00:00
suse
suse
remote denial of service in php4,php5
2007-07-12 16:26:43
amazon
amazon
Important: libwmf
2015-10-27 13:51:00
archlinux
archlinux
[ASA-201701-1] libwmf: multiple issues
2017-01-01 00:00:00
freebsd
freebsd
libwmf -- multiple vulnerabilities
2004-10-12 00:00:00
kitploit
kitploit
arch-audit - An utility like pkg-audit for Arch Linux
2016-10-15 14:30:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.058 Low
EPSS
Percentile
93.3%
Related for DEBIANCVE:CVE-2007-2756