10 matches found
K43267483: PHP vulnerability CVE-2016-5766
Security Advisory Description Integer overflow in the gd2GetHeader function in gdgd2.c in the GD Graphics Library aka libgd before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service heap-based buffer overflow and...
CLSA-2022-1646915745 Fix of CVE: CVE-2021-40145
CVE-2021-40145: Fix a double free in gdImageGd2Ptr in gdgd2.c in the GD Graphics Library...
gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) through 2.3.2 has a double free. NOTE: the vendor's position is "The GD2 image format is a proprietary image format of libgd. It has to be regarded as being obsolete and should only be used for development and testing purposes.
...
Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : GD library vulnerabilities (USN-5068-1)
The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5068-1 advisory. It was discovered that GD Graphics Library incorrectly handled certain GD and GD2 files. An attacker could possibly use this issu...
CVE-2021-40145
gdImageGd2Ptr in gdgd2.c in the GD Graphics Library aka LibGD through 2.3.2 has a double free. NOTE: the vendor's position is "The GD2 image format is a proprietary image format of libgd. It has to be regarded as being obsolete, and should only be used for development and testing purposes...
Double free
DISPUTED gdImageGd2Ptr in gdgd2.c in the GD Graphics Library aka LibGD through 2.3.2 has a double free. NOTE: the vendor's position is "The GD2 image format is a proprietary image format of libgd. It has to be regarded as being obsolete, and should only be used for development and testing purpose...
CVE-2021-40145
gdImageGd2Ptr in gdgd2.c in the GD Graphics Library aka LibGD through 2.3.2 has a double free. NOTE: the vendor's position is "The GD2 image format is a proprietary image format of libgd. It has to be regarded as being obsolete, and should only be used for development and testing purposes...
GD Graphics Library资源管理错误漏洞
GD Graphics Library is an open source library for programmers to dynamically create images. A resource management error vulnerability exists in the GD Graphics Library, which stems from a double release of gdImageGd2Ptr in gdgd2.c in GD Graphics Library aka LibGD through 2.3.2...
libGD 'gd_gd2.c' Integer Overflow Vulnerability
libGD also known as GD Graphics Library or libgd2 is an American software developer Thomas Boutell developed an open source for the dynamic creation of images library, which supports the creation of charts, graphs and thumbnails and so on. An integer overflow vulnerability exists in libgd. An...
CVE-2016-5766
CVE-2016-5766 affects the GD Graphics Library (libgd) via an integer overflow in _gd2GetHeader() in gd_gd2.c, before libgd 2.2.3. This can cause a heap-based overflow when processing crafted GD2 images, leading to a denial of service (and potentially other impact) on the host application using th...