231 matches found
DLA-1248-1 libgd2 - security update
Bulletin has no description...
Debian DLA-1248-1 : libgd2 security update
It was discovered that there was a denial of service attack in the libgd2 image library. A corrupt file could have exploited a signedness confusion leading to an infinite loop. For Debian 7 'Wheezy', this issue has been fixed in libgd2 version 2.0.36rc1dfsg-6.1+deb7u11. We recommend that you...
CVE-2018-5711
gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated by a call to the imagecreatefromgif or...
The vulnerability of the GIF-decoding function `gdImageCreateFromGifCtx` in the `libgd2` library for creating and working with programmable graphics allows a perpetrator to compromise confidential information.
The vulnerability of the GIF-decoding function gdImageCreateFromGifCtx gdgifin.c in the library for creating and working with programmable graphics, libgd2, is related to the lack of cleanup of allocated color buffer spaces before their use. Exploiting this vulnerability could allow an attacker t...
Debian DLA-1106-1 : libgd2 security update
A double-free vulnerability was discovered in the gdImagePngPtr function in libgd2, a library for programmatic graphics creation and manipulation, which may result in denial of service or potentially the execution of arbitrary code if a specially crafted file is processed. For Debian 7 'Wheezy',...
[SECURITY] [DLA 1106-1] libgd2 security update
Package : libgd2 Version : 2.0.36rc1dfsg-6.1+deb7u10 CVE ID : CVE-2017-6362 A double-free vulnerability was discovered in the gdImagePngPtr function in libgd2, a library for programmatic graphics creation and manipulation, which may result in denial of service or potentially the execution of...
DLA-1106-1 libgd2 - security update
Bulletin has no description...
Updated libwmf packages fix security vulnerability
Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors. CVE-2017-6362...
MGASA-2017-0351 Updated libwmf packages fix security vulnerability
Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors. CVE-2017-6362...
CVE-2017-6362
Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors...
Double free
Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors...
CVE-2017-6362
Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors...
ALPINE-CVE-2017-6362
Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors...
CVE-2017-6362
Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors...
CVE-2017-6362
Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors...
CVE-2017-6362
CVE-2017-6362 is a double-free in libgd2’s gdImagePngPtr() prior to 2.2.5, enabling remote denial of service via vectors related to a palette with no colors. Debs/Mageia advisories report the fix to libgd2 2.2.5; some sources note potential arbitrary code execution on crafted input. No exploit de...
CVE-2017-6362
Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors...
CVE-2017-6362
Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors...
USN-3410-1 libgd2 vulnerability
It was discovered that the GD Graphics Library aka libgd incorrectly handled certain malformed PNG images. A remote attacker could use this issue to cause the GD Graphics Library to crash, resulting in a denial of service, or possibly execute arbitrary code...
Debian DSA-3961-1 : libgd2 - security update
A double-free vulnerability was discovered in the gdImagePngPtr function in libgd2, a library for programmatic graphics creation and manipulation, which may result in denial of service or potentially the execution of arbitrary code if a specially crafted file is processed. %NASLMINLEVEL 70300 C...