Lucene search
Ubuntu.comUB:CVE-2014-9709HistoryMar 30, 2015 - 12:00 a.m.
CVE-2014-9709
2015-03-3000:00:00
ubuntu.com
ubuntu.com
10
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.039 Low
EPSS
Percentile
91.9%
The GetCode_ function in gd_gif_in.c in GD 2.1.1 and earlier, as used in
PHP before 5.5.21 and 5.6.x before 5.6.5, allows remote attackers to cause
a denial of service (buffer over-read and application crash) via a crafted
GIF image that is improperly handled by the gdImageCreateFromGif function.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | php5 uses system gd |
Related
nessus
nessus
openSUSE Security Update : gd (openSUSE-2015-280)
2015-04-01 00:00:00
SuSE 11.3 Security Update : gd (SAT Patch Number 10530)
2015-05-08 00:00:00
F5 Networks BIG-IP : PHP vulnerability (K17127)
2016-02-18 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for gd (EulerOS-SA-2019-1463)
2020-01-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0866-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0835-1)
2021-06-09 00:00:00
f5
f5
SOL17127 - PHP vulnerability CVE-2014-9709
2015-08-14 00:00:00
K17127 : PHP vulnerability CVE-2014-9709
2015-08-14 00:00:00
cve
cve
CVE-2014-9709
2015-03-30 10:59:00
prion
prion
Design/Logic Flaw
2015-03-30 10:59:00
debiancve
debiancve
CVE-2014-9709
2015-03-30 10:59:00
securityvulns
securityvulns
[SECURITY] [DSA 3215-1] libgd2 security update
2015-04-07 00:00:00
libgd / PHP security vulnerabilities
2015-04-07 00:00:00
APPLE-SA-2015-09-30-3 OS X El Capitan 10.11
2015-10-05 00:00:00
osv
osv
libgd2 - security update
2015-04-08 00:00:00
libgd2 - security update
2015-04-06 00:00:00
debian
debian
[SECURITY] [DSA 3215-1] libgd2 security update
2015-04-06 18:33:02
[SECURITY] [DSA 3215-1] libgd2 security update
2015-04-06 18:33:02
[SECURITY] [DLA 189-1] libgd2 security update
2015-04-08 17:24:39
gentoo
gentoo
GD: Multiple vulnerabilities
2016-07-16 00:00:00
PHP: Multiple vulnerabilities
2016-06-19 00:00:00
freebsd
freebsd
Several vulnerabilities found in PHP
2015-04-16 00:00:00
amazon
amazon
Important: php54
2015-04-17 12:04:00
ubuntu
ubuntu
GD library vulnerabilities
2016-05-31 00:00:00
cloudfoundry
cloudfoundry
USN-2987-1 GD library vulnerabilities | Cloud Foundry
2016-06-13 00:00:00
suse
suse
Security update for php5 (important)
2015-05-13 15:07:04
Security update for php53 (important)
2016-06-21 13:08:17
slackware
slackware
[slackware-security] php
2015-04-22 01:22:40
kaspersky
kaspersky
KLA10514 Multiple vulnerabilities in PHP and plugins
2015-03-30 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:39:23
Sensitive Information Disclosure
2019-05-02 05:39:24
Out-Of-Bounds Read
2019-05-02 05:39:22
redhat
redhat
(RHSA-2015:1053) Moderate: php55 security and bug fix update
2015-06-04 00:00:00
(RHSA-2015:1218) Moderate: php security update
2015-07-09 00:00:00
(RHSA-2015:1066) Important: php54 security and bug fix update
2015-06-04 00:00:00
ibm
ibm
oraclelinux
oraclelinux
php55 security and bug fix update
2016-02-04 00:00:00
php security update
2015-07-09 00:00:00
php54 security and bug fix update
2016-02-04 00:00:00
centos
centos
php security update
2015-07-09 19:23:41
php security update
2015-06-24 03:28:02
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.039 Low
EPSS
Percentile
91.9%
Related for UB:CVE-2014-9709