UbuntuUSN-557-1GD library vulnerability
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
6.9 Medium
AI Score
Confidence
Low
0.028 Low
EPSS
Percentile
90.7%
Releases
- Ubuntu 7.10
- Ubuntu 7.04
- Ubuntu 6.10
- Ubuntu 6.06
Packages
- libgd2 -
Details
Mattias Bengtsson and Philip Olausson discovered that the GD
library did not properly perform bounds checking when creating
images. An attacker could send specially crafted input to
applications linked against libgd2 and cause a denial of service
or possibly execute arbitrary code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 7.10 | noarch | libgd2-xpm | < 2.0.34-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libgd-tools | < 2.0.34-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libgd2-noxpm | < 2.0.34-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libgd2-noxpm-dev | < 2.0.34-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libgd2-xpm-dev | < 2.0.34-1ubuntu1.1 | UNKNOWN |
| Ubuntu | 7.04 | noarch | libgd2-xpm | < 2.0.34~rc1-2ubuntu1.2 | UNKNOWN |
| Ubuntu | 7.04 | noarch | libgd-tools | < 2.0.34~rc1-2ubuntu1.2 | UNKNOWN |
| Ubuntu | 7.04 | noarch | libgd2-noxpm | < 2.0.34~rc1-2ubuntu1.2 | UNKNOWN |
| Ubuntu | 7.04 | noarch | libgd2-noxpm-dev | < 2.0.34~rc1-2ubuntu1.2 | UNKNOWN |
| Ubuntu | 7.04 | noarch | libgd2-xpm-dev | < 2.0.34~rc1-2ubuntu1.2 | UNKNOWN |
References
Related
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
6.9 Medium
AI Score
Confidence
Low
0.028 Low
EPSS
Percentile
90.7%