Lucene search

K
ubuntucveUbuntu.comUB:CVE-2009-3546
HistoryOct 19, 2009 - 12:00 a.m.

CVE-2009-3546

2009-10-1900:00:00
ubuntu.com
ubuntu.com
16

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.018

Percentile

88.2%

The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5.3.1,
and the GD Graphics Library 2.x, does not properly verify a certain
colorsTotal structure member, which might allow remote attackers to conduct
buffer overflow or buffer over-read attacks via a crafted GD file, a
different vulnerability than CVE-2009-3293. NOTE: some of these details are
obtained from third party information.

Bugs

Notes

Author Note
mdeslaur PoC in php commit php not affected - uses system libgd2
OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchlibgd2< 2.0.33-2ubuntu5.4UNKNOWN
ubuntu8.04noarchlibgd2< 2.0.35.dfsg-3ubuntu2.1UNKNOWN
ubuntu8.10noarchlibgd2< 2.0.36~rc1~dfsg-3ubuntu1.8.10.1UNKNOWN
ubuntu9.04noarchlibgd2< 2.0.36~rc1~dfsg-3ubuntu1.9.04.1UNKNOWN
ubuntu9.10noarchlibgd2< 2.0.36~rc1~dfsg-3ubuntu1.9.10.1UNKNOWN

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.018

Percentile

88.2%