Denial Of Service (DoS)

libgd.so is vulnerable to denial of service DoS attacks. A malicious user can pass an oversized image to the gdImageCreate function in gd.c to consume memory and crash the application...

CVE-2016-5767

The CVE-2016-5767 issue is an integer overflow in the GD library’s gdImageCreate function used by the PHP gd extension . A crafted GD image can trigger a remote denial of service via a heap-based buffer overflow. Affected ranges include PHP builds that embed libgd before 2.0.34RC1, specifically P...

PHP 5.6.x < 5.6.12 Multiple Vulnerabilities

Binary data 8960.prm...

PHP 'ext/gd/gd.c'信息泄漏漏洞

CVE ID:CVE-2014-2020 PHP是一种HTML内嵌式的语言。 PHP 'ext/gd/gd.c'没有检查数据类型，允许远程攻击者使用字符串或数组数据累心过来代替数字数据类型来获取敏感信息，此漏洞不同于CVE-2013-7226。 0 PHP 5.5.x PHP 5.5.9已经修复该漏洞，建议用户下载更新： http://php.net...

CVE-2014-2020

ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check data types, which might allow remote attackers to obtain sensitive information by using a 1 string or 2 array data type in place of a numeric data type, as demonstrated by an imagecrop function call with a string for the x dimension value, a...

CVE-2014-2020

ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check data types, which might allow remote attackers to obtain sensitive information by using a 1 string or 2 array data type in place of a numeric data type, as demonstrated by an imagecrop function call with a string for the x dimension value, a...