Lucene search
K

9 matches found

OSV
OSV
added 2020/02/24 9:44 p.m.8 views

MGASA-2020-0098 Updated libgd packages fix security vulnerability

The updated packages fix a security vulnerability: gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL pointer dereference allowing attackers to crash an application via a specific function call sequence. CVE-2018-14553...

7.5CVSS7.3AI score0.03407EPSS
Exploits0References3
OSV
OSV
added 2019/02/13 11:8 a.m.28 views

MGASA-2019-0073 Updated libgd packages fix security vulnerability

gdImageColorMatch in gdcolormatch.c in the GD Graphics Library aka LibGD 2.2.5 has a heap-based buffer overflow. This can be exploited by an attacker who is able to trigger calls to the function with crafted image data CVE-2019-6977. The GD Graphics Library aka LibGD 2.2.5 has a double free in th...

9.8CVSS8.6AI score0.65116EPSS
Exploits7References3
Mageia
Mageia
added 2018/09/02 7:7 p.m.40 views

Updated libgd packages fix security vulnerabilities

The updated packages fix security vulnerabilities: gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated...

8.8CVSS7.8AI score0.13204EPSS
Exploits1References2
OSV
OSV
added 2017/08/07 10:16 p.m.26 views

MGASA-2017-0246 Updated php and libgd packages fix security vulnerabilities

Buffer over-read into uninitialized memory in libgd CVE-2017-7890. Security issues from bundled oniguruma in php-mbstring CVE-2017-9224, CVE-2017-9226, CVE-2017-9227, CVE-2017-9228, CVE-2017-9229...

9.8CVSS8AI score0.07511EPSS
Exploits5References3
OSV
OSV
added 2016/12/22 9:41 p.m.11 views

MGASA-2016-0421 Updated libgd packages fixe security vulnerabilities

Ibrahim El-Sayed discovered that the GD library incorrectly handled certain malformed Tiff images. If a user or automated system were tricked into processing a specially crafted Tiff image, an attacker could cause a denial of service CVE-2016-6911. Emmanuel Law discovered that the GD library...

9.8CVSS8.3AI score0.04786EPSS
Exploits0References3
OSV
OSV
added 2016/07/05 3:47 p.m.18 views

MGASA-2016-0242 Updated libgd packages fix security vulnerability

Stack overflow with imagefilltoborder CVE-2015-8874. Integer Overflow in gd2GetHeader resulting in heap overflow CVE-2016-5766. Integer Overflow in gdImagePaletteToTrueColor resulting in heap overflow CVE-2016-5767. Improperly handling invalid color index in gdImageCropThreshold could result in...

8.8CVSS7.2AI score0.08276EPSS
Exploits2References5
Mageia
Mageia
added 2016/05/21 10:11 p.m.63 views

Updated libgd packages fix CVE-2015-8874

Updated libgd packages fix security vulnerability: It was discovered that there was a stack consumption vulnerability in the libgd2 graphics library which allowed remote attackers to cause a denial of service via a crafted imagefilltoborder call CVE-2015-8874...

7.5CVSS6.9AI score0.08276EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2004/11/30 12:0 a.m.35 views

Debian DSA-601-1 : libgd - integer overflow

More potential integer overflows have been found in the GD graphics library which weren't covered by our security advisory DSA 589. They could be exploited by a specially crafted graphic and could lead to the execution of arbitrary code on the victim's machine. %NASLMINLEVEL 70300 C Tenable Netwo...

10CVSS7AI score0.28255EPSS
Exploits0References3
securityvulns
securityvulns
added 2004/10/27 12:0 a.m.31 views

libgd integer overflow

Integer overflow during PNG format parsing...

4.7AI score
Exploits0References1Affected Software1
Rows per page
Query Builder