11 matches found
Astra Linux - уязвимость в libgd2
In the GD Graphics Library also known as LibGD, from version 2.2.5 onwards, there is a heap-based buffer over-read issue in tiffWriter within the gdtiff.c file. NOTE: The vendor states that “In my opinion, this issue should not have a CVE, since the GD and GD2 formats are documented as ‘obsolete’...
Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : GD library vulnerabilities (USN-5068-1)
The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5068-1 advisory. It was discovered that GD Graphics Library incorrectly handled certain GD and GD2 files. An attacker could possibly use this issu...
EulerOS 2.0 SP8 : gd (EulerOS-SA-2020-1802)
According to the versions of the gd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In the GD Graphics Library aka LibGD through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gdtiff.c. NOTE: the vendor says 'In my...
CVE-2017-6363
In the GD Graphics Library aka LibGD through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gdtiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since the GD and GD2 formats are documented to be 'obsolete, and should only be used for development and...
UBUNTU-CVE-2017-6363
In the GD Graphics Library aka LibGD through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gdtiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since the GD and GD2 formats are documented to be 'obsolete, and should only be used for development and...
CVE-2017-6363
In the GD Graphics Library aka LibGD through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gdtiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since the GD and GD2 formats are documented to be 'obsolete, and should only be used for development and...
Heap overflow
DISPUTED In the GD Graphics Library aka LibGD through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gdtiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since the GD and GD2 formats are documented to be 'obsolete, and should only be used for developmen...
CVE-2017-6363
In the GD Graphics Library aka LibGD through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gdtiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since the GD and GD2 formats are documented to be 'obsolete, and should only be used for development and...
CVE-2017-6363
CVE-2017-6363 affects the GD Graphics Library (LibGD) up to 2.2.5, with a heap-based buffer over-read in the tiffWriter function (gd_tiff.c). The issue can enable a crash or memory access problems when processing certain GD/GD2/tiff data, as described in multiple sources referencing LibGD’s vulne...
CVE-2017-6363
In the GD Graphics Library aka LibGD through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gdtiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since the GD and GD2 formats are documented to be 'obsolete, and should only be used for development and...
CVE-2017-6363
In the GD Graphics Library aka LibGD through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gdtiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since the GD and GD2 formats are documented to be 'obsolete, and should only be used for development and...