Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1193 matches found

NVD
NVDadded 2017/08/02 7:29 p.m.16 views

CVE-2017-7890

The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read 700 bytes from the top of the...

6.5CVSS6.5AI score0.30217EPSS
Exploits0References10
OSV
OSVadded 2017/08/02 7:29 p.m.26 views

CVE-2017-7890

The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read 700 bytes from the top of the...

6.5CVSS6.4AI score
Exploits0References10
EUVD
EUVDadded 2017/08/02 7:0 p.m.3 views

EUVD-2017-16862

The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read 700 bytes from the top of the...

6.5CVSS6.4AI score0.30217EPSS
Exploits0References16
Debian CVE
Debian CVEadded 2017/08/02 7:0 p.m.26 views

CVE-2017-7890

The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read 700 bytes from the top of the...

6.5CVSS6.6AI score0.30217EPSS
Exploits0
Cvelist
Cvelistadded 2017/08/02 7:0 p.m.21 views

CVE-2017-7890

The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read 700 bytes from the top of the...

6.9AI score0.30217EPSS
Exploits0References10
AlpineLinux
AlpineLinuxadded 2017/08/02 7:0 p.m.28 views

CVE-2017-7890

The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read 700 bytes from the top of the...

6.5CVSS7.1AI score0.30217EPSS
Exploits0
OSV
OSVadded 2017/08/02 12:0 a.m.0 views

UBUNTU-CVE-2017-7890

The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read 700 bytes from the top of the...

6.5CVSS6.6AI score0.30217EPSS
Exploits0References4
FreeBSD
FreeBSDadded 2017/08/02 12:0 a.m.33 views

php-gd and gd -- Buffer over-read into uninitialized memory

PHP developers report: The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read 700 byt...

6.5CVSS2.4AI score0.30217EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2017/07/21 7:18 p.m.29 views

CVE-2017-7890

A data leak was found in gdImageCreateFromGifCtx in GD Graphics Library used in PHP before 5.6.31 and 7.1.7. An attacker could craft a malicious GIF image and read up to 762 bytes from stack...

6.5CVSS3AI score0.30217EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2017/07/13 12:0 a.m.223 views

PHP 7.1.x < 7.1.7 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.1.x prior to 7.1.7. It is, therefore, affected by the following vulnerabilities : - An out-of-bounds read error exists in the GD Graphics Library LibGD in the gdImageCreateFromGifCtx function within file gdgifin.c...

9.8CVSS7.3AI score0.40698EPSS
Exploits5References13
Tenable Nessus
Tenable Nessusadded 2017/07/13 12:0 a.m.118 views

PHP 7.0.x < 7.0.21 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.21. It is, therefore, affected by the following vulnerabilities : - An out-of-bounds read error exists in the PCRE library in the compilebracketmatchingpath function within file pcrejitcompile.c. An...

9.8CVSS7.3AI score0.40698EPSS
Exploits5References14
OpenVAS
OpenVASadded 2017/07/11 12:0 a.m.70 views

PHP < 5.6.31, 7.0.x < 7.0.21, 7.1.x < 7.1.7 Multiple Vulnerabilities (Jul 2017) - Windows

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

9.8CVSS8.1AI score0.40698EPSS
Exploits6References7
Tenable Nessus
Tenable Nessusadded 2017/07/10 12:0 a.m.40 views

EulerOS 2.0 SP2 : gd (EulerOS-SA-2017-1128)

According to the version of the gd package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Integer signedness error in the dynamicGetbuf function in gdiodp.c in the GD Graphics Library aka libgd through 2.2.3, as used in PHP before 5.6.28 and...

9.8CVSS8.7AI score0.01746EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2017/06/26 12:0 a.m.295 views

Tenable SecurityCenter PHP < 5.6.30 Multiple Vulnerabilities (TNS-2017-04)

The Tenable SecurityCenter application installed on the remote host is missing a security patch. It is, therefore, affected by multiple vulnerabilities in the bundled version of PHP : - A seg fault when loading hostile phar could be used to crash the PHP interpreter or potentially disclose...

9.8CVSS7AI score0.2113EPSS
Exploits1References9
CNVD
CNVDadded 2017/06/06 12:0 a.m.2 views

Silicon Graphics LibTIFF Memory Disclosure Vulnerability

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files. A memory leak vulnerability exists in the 'TIFFReadDirEntryLong8Array' function of the...

6.5CVSS6.7AI score0.00512EPSS
Exploits0References1
0day.today
0day.todayadded 2017/05/25 12:0 a.m.51 views

Skia Graphics Library - Heap Overflow due to Rounding Error in SkEdge::setLine Exploit

Exploit for multiple platform in category dos / poc / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1155 Skia bug: https://bugs.chromium.org/p/skia/issues/detail?id=6294 There is a heap overflow in SkARGB32ShaderBlitter::blitH caused by a rounding error in SkEdge::setLine. To...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2017/05/25 12:0 a.m.24 views

Skia Graphics Library - Heap Overflow due to Rounding Error in SkEdge::setLine

/ Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1155 Skia bug: https://bugs.chromium.org/p/skia/issues/detail?id=6294 There is a heap overflow in SkARGB32ShaderBlitter::blitH caused by a rounding error in SkEdge::setLine. To trigger the bug Skia needs to be compiled with...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2017/05/25 12:0 a.m.361 views

Skia Graphics Library Heap Overflow

Skia Graphics Library: heap overflow due to rounding error in SkEdge::setLine Skia bug: https://bugs.chromium.org/p/skia/issues/detail?id=6294 There is a heap overflow in SkARGB32ShaderBlitter::blitH caused by a rounding error in SkEdge::setLine. To trigger the bug Skia needs to be compiled with...

0.5AI score
Exploits0
CNVD
CNVDadded 2017/05/23 12:0 a.m.1 views

Cairo denial of service vulnerability

Cairo is a cross-platform open source vector graphics library developed by software developers Carl Worth and Behdad Esfahbod, which supports doing 2D drawings in multiple contexts and provides high-quality display and printouts. A denial of service vulnerability exists in Cairo version 1.15.4. A...

5.5CVSS6.8AI score0.00282EPSS
Exploits0References1
OSV
OSVadded 2017/05/19 8:29 p.m.2 views

DEBIAN-CVE-2017-7475

Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FTLoadGlyph and FTRenderGlyph resulting in an application crash...

5.5CVSS6.9AI score0.00282EPSS
Exploits0References1
Rows per page
Query Builder