5 matches found
Mandrake Linux Security Advisory : tetex (MDKSA-2006:113)
Integer overflows were reported in the GD Graphics Library libgd 2.0.28, and possibly other versions. These overflows allow remote attackers to cause a denial of service and possibly execute arbitrary code via PNG image files with large image rows values that lead to a heap-based buffer overflow ...
[Full-disclosure] [ MDKSA-2006:113 ] - Updated tetex packages fix embedded GD vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2006:113 http://www.mandriva.com/security/ Package : tetex Date : June 27, 2006 Affected: 10.2, 2006.0 Problem Description: Integer overflows were reported in the GD Graphics Library libgd 2.0.28, and possibly...
Mandrake Linux Security Advisory : gd (MDKSA-2006:112)
The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas Boutell graphics draw GD library aka libgd 2.0.33 allows remote attackers to cause a denial of service CPU consumption via malformed GIF data that causes an infinite loop. gd-2.0.15 in Corporate 3.0 is not affected by this...
CVE-2006-2906
CVE-2006-2906 affects the GD graphics library (libgd2) via the LZW decoding path in gdImageCreateFromGifPtr, causing an infinite loop and CPU denial of service when processing malformed GIFs. Affected packages include libgd2 used by PHP-gd and standalone libgd2 implementations; multiple advisorie...
CVE-2006-2906
The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas Boutell graphics draw GD library aka libgd 2.0.33 allows remote attackers to cause a denial of service CPU consumption via malformed GIF data that causes an infinite loop...