Lucene search
Ubuntu.comUB:CVE-2013-7226HistoryFeb 18, 2014 - 12:00 a.m.
CVE-2013-7226
2014-02-1800:00:00
ubuntu.com
ubuntu.com
13
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.048 Low
EPSS
Percentile
92.7%
Integer overflow in the gdImageCrop function in ext/gd/gd.c in PHP 5.5.x
before 5.5.9 allows remote attackers to cause a denial of service
(application crash) or possibly have unspecified other impact via an
imagecrop function call with a large x dimension value, leading to a
heap-based buffer overflow.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | imagecrop was introduced in 5.5.0 |
Related
prion
prion
Integer overflow
2014-02-18 11:55:00
Null pointer dereference
2014-02-18 11:55:00
Design/Logic Flaw
2014-02-18 11:55:00
hackerone
hackerone
Internet Bug Bounty: PHP Heap Overflow Vulnerability in imagecrop()
2013-12-27 02:57:00
nessus
nessus
Mandriva Linux Security Advisory : php (MDVSA-2014:027)
2014-02-13 00:00:00
Amazon Linux AMI : php55 (ALAS-2014-314)
2014-03-28 00:00:00
PHP 5.5.x < 5.5.9 GD Extension Multiple Vulnerabilities
2014-02-14 00:00:00
cve
cve
ubuntucve
ubuntucve
f5
f5
SOL15648 - PHP vulnerability CVE-2014-2020
2014-10-02 00:00:00
K15648 : PHP vulnerability CVE-2014-2020
2014-10-02 00:00:00
SOL15653 - Multiple PHP vulnerabilities
2014-10-02 00:00:00
seebug
seebug
PHP 'ext/gd/gd.c'俥ćŻćłćźćźć´
2014-02-20 00:00:00
amazon
amazon
Important: php55
2014-03-24 23:37:00
openvas
openvas
PHP Multiple Vulnerabilities - 01 (May 2014)
2014-05-09 00:00:00
Amazon Linux: Security Advisory (ALAS-2014-314)
2015-09-08 00:00:00
Ubuntu Update for php5 USN-2126-1
2014-03-04 00:00:00
securityvulns
securityvulns
USN-2126-1] PHP vulnerabilities
2014-03-13 00:00:00
PHP multiple security vulnerabilities
2014-03-18 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2014-03-03 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2014-08-29 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.048 Low
EPSS
Percentile
92.7%
Related for UB:CVE-2013-7226