Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-473-1
HistoryJun 12, 2007 - 12:00 a.m.

libgd2 vulnerabilities

2007-06-1200:00:00
ubuntu.com
29

7.3 High

AI Score

Confidence

High

0.064 Low

EPSS

Percentile

93.7%

JSON

Releases

  • Ubuntu 7.04
  • Ubuntu 6.10
  • Ubuntu 6.06

Details

A buffer overflow was discovered in libgd2’s font renderer. By tricking
an application using libgd2 into rendering a specially crafted string
with a JIS encoded font, a remote attacker could read heap memory or
crash the application, leading to a denial of service. (CVE-2007-0455)

Xavier Roche discovered that libgd2 did not correctly validate PNG
callback results. If an application were tricked into processing a
specially crafted PNG image, it would monopolize CPU resources. Since
libgd2 is often used in PHP and Perl web applications, this could lead
to a remote denial of service. (CVE-2007-2756)

OSVersionArchitecturePackageVersionFilename
Ubuntu7.04noarchlibgd2-xpm< 2.0.34~rc1-2ubuntu1.1UNKNOWN
Ubuntu7.04noarchlibgd2-noxpm< 2.0.34~rc1-2ubuntu1.1UNKNOWN
Ubuntu6.10noarchlibgd2-xpm< 2.0.33-4ubuntu2.1UNKNOWN
Ubuntu6.10noarchlibgd2-noxpm< 2.0.33-4ubuntu2.1UNKNOWN
Ubuntu6.06noarchlibgd2-xpm< 2.0.33-2ubuntu5.2UNKNOWN
Ubuntu6.06noarchlibgd2-noxpm< 2.0.33-2ubuntu5.2UNKNOWN

Related

openvas 64
nessus 50
fedora 6
cve 2
ubuntucve 2
cvelist 2
prion 2
veracode 2
securityvulns 5
debiancve 2
redhat 7
osv 2
debian 1
oraclelinux 5
centos 5
amazon 1
slackware 2
archlinux 1
freebsd 1
gentoo 2
f5 2
suse 1
kitploit 1
openvas
openvas
Ubuntu: Security Advisory (USN-473-1)
2009-03-23 00:00:00
Ubuntu Update for libgd2 vulnerabilities USN-473-1
2009-03-23 00:00:00
Mandriva Update for gd MDKSA-2007:035 (gd)
2009-04-09 00:00:00
nessus
nessus
Ubuntu 6.06 LTS / 6.10 / 7.04 : libgd2 vulnerabilities (USN-473-1)
2007-11-10 00:00:00
openSUSE 10 Security Update : gd (gd-3747)
2007-10-17 00:00:00
Mandrake Linux Security Advisory : gd (MDKSA-2007:035)
2007-02-18 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: gd-2.0.33-10.fc6
2007-02-12 17:26:55
[SECURITY] Fedora Core 5 Update: gd-2.0.33-7.fc5
2007-02-12 17:28:03
[SECURITY] Fedora Core 6 Update: php-5.1.6-3.5.fc6
2007-04-17 12:45:17
cve
cve
CVE-2007-0455
2007-01-30 17:28:00
CVE-2007-2756
2007-05-18 18:30:00
ubuntucve
ubuntucve
CVE-2007-0455
2007-01-30 00:00:00
CVE-2007-2756
2007-05-18 00:00:00
cvelist
cvelist
CVE-2007-0455
2007-01-30 17:00:00
CVE-2007-2756
2007-05-18 18:00:00
prion
prion
Buffer overflow
2007-01-30 17:28:00
Code injection
2007-05-18 18:30:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:20:27
Arbitrary Code Execution
2020-04-10 00:15:21
securityvulns
securityvulns
[Full-disclosure] [ MDKSA-2007:122 ] - Updated gd packages fix vulnerability
2007-06-14 00:00:00
libgd graphics library code execution
2007-01-31 00:00:00
libgd PNG DoS
2007-06-14 00:00:00
debiancve
debiancve
CVE-2007-2756
2007-05-18 18:30:00
CVE-2007-0455
2007-01-30 17:28:00
redhat
redhat
(RHSA-2008:0146) Moderate: gd security update
2008-02-28 00:00:00
(RHSA-2007:0153) Moderate: php security update
2007-04-20 00:00:00
(RHSA-2007:0162) Moderate: php security update
2007-04-16 00:00:00
osv
osv
libgd2 - several vulnerabilities
2009-11-17 00:00:00
libgd2 - multiple vulnerabilities
2008-07-22 00:00:00
debian
debian
[SECURITY] [DSA 1936-1] New libgd2 packages fix several vulnerabilities
2009-11-17 21:15:19
oraclelinux
oraclelinux
Moderate: gd security update
2008-02-28 00:00:00
Important: php security update
2007-04-16 00:00:00
Moderate: php security update
2007-09-26 00:00:00
centos
centos
gd security update
2008-02-28 19:35:25
php security update
2007-04-21 13:47:06
php security update
2007-09-20 14:31:37
amazon
amazon
Important: libwmf
2015-10-27 13:51:00
slackware
slackware
[slackware-security] php5
2007-06-01 21:19:18
[slackware-security] libwmf
2018-05-01 01:19:49
archlinux
archlinux
[ASA-201701-1] libwmf: multiple issues
2017-01-01 00:00:00
freebsd
freebsd
libwmf -- multiple vulnerabilities
2004-10-12 00:00:00
gentoo
gentoo
GD: Multiple vulnerabilities
2007-08-09 00:00:00
PHP: Multiple vulnerabilities
2007-10-07 00:00:00
f5
f5
K7859 : Multiple PHP vulnerabilities
2013-03-19 00:00:00
SOL7859 - Multiple PHP vulnerabilities
2007-09-16 00:00:00
suse
suse
remote denial of service in php4,php5
2007-07-12 16:26:43
kitploit
kitploit
arch-audit - An utility like pkg-audit for Arch Linux
2016-10-15 14:30:00

7.3 High

AI Score

Confidence

High

0.064 Low

EPSS

Percentile

93.7%

JSON
Related for USN-473-1
openvas64nessus50fedora6cve2ubuntucve2cvelist2prion2veracode2securityvulns5debiancve2redhat7osv2debian1oraclelinux5centos5amazon1slackware2archlinux1freebsd1gentoo2f52suse1kitploit1