231 matches found
Mandrake Linux Security Advisory : gd (MDKSA-2006:112)
The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas Boutell graphics draw GD library aka libgd 2.0.33 allows remote attackers to cause a denial of service CPU consumption via malformed GIF data that causes an infinite loop. gd-2.0.15 in Corporate 3.0 is not affected by this...
Ubuntu 4.10 : libgd2 vulnerabilities (USN-11-1)
Several buffer overflows have been discovered in libgd's PNG handling functions. If an attacker tricked a user into loading a malicious PNG image, they could leverage this into executing arbitrary code in the context of the user opening image. Most importantly, this library is commonly used in PH...
Ubuntu 4.10 : libgd2 vulnerability (USN-25-1)
CAN-2004-0990 described several more buffer overflows which had been discovered in libgd2's PNG handling functions. However, it was determined that the update from USN-11-1 was not sufficient to prevent every possible attack, so another update is required. If an attacker tricked a user into loadi...
Debian DSA-602-1 : libgd2 - integer overflow
More potential integer overflows have been found in the GD graphics library which weren't covered by our security advisory DSA 591. They could be exploited by a specially crafted graphic and could lead to the execution of arbitrary code on the victim's machine. %NASLMINLEVEL 70300 C Tenable Netwo...
[SECURITY] [DSA 602-1] New libgd2 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 602-1 [email protected] http://www.debian.org/security/ Martin Schulze November 29th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 602-1] New libgd2 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 602-1 [email protected] http://www.debian.org/security/ Martin Schulze November 29th, 2004 http://www.debian.org/security/faq -...
DSA-602-1 libgd2 - integer overlow
Bulletin has no description...
USN-25-1: libgd2 vulnerability
CAN-2004-0990 described several more buffer overflows which had been discovered in libgd2's PNG handling functions. However, it was determined that the update from USN-11-1 was not sufficient to prevent every possible attack, so another update is required. If an attacker tricked a user into loadi...
Debian DSA-591-1 : libgd2 - integer overflows
'infamous41md' discovered several integer overflows in the PNG image decoding routines of the GD graphics library. This could lead to the execution of arbitrary code on the victim's machine. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugi...
[SECURITY] [DSA 591-1] New libgd2 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 591-1 [email protected] http://www.debian.org/security/ Martin Schulze November 9th, 2004 http://www.debian.org/security/faq -...
[SECURITY] [DSA 591-1] New libgd2 packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 591-1 [email protected] http://www.debian.org/security/ Martin Schulze November 9th, 2004 http://www.debian.org/security/faq -...