Lucene search

Veracode Vulnerability DatabaseVERACODE:6235

HistoryMay 03, 2018 - 8:04 a.m.

Denial Of Service (DoS) Via Integer Overflow

2018-05-0308:04:16

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

JSON

libgd.so is vulnerable to denial of service (DoS) attack. It does not properly check the chunk count when reading an image, accepting a malicious gd2 file to cause an integer overflow that can crash the application or cause other impacts.

CPENameOperatorVersion
libgd.sole3.0.10
rh-php70-phpeq7.0.10__2.el7
rh-php70-phpeq7.0.10__2.el6
gd:3.3eq2.1.1-r2

Name	Operator	Version
libgd.so	le	3.0.10
rh-php70-php	eq	7.0.10__2.el7
rh-php70-php	eq	7.0.10__2.el6
gd:3.3	eq	2.1.1-r2

References

bugzilla.redhat.com/show_bug.cgi?id=1418986

github.com/libgd/libgd/commit/69d2fd2c597ffc0c217de1238b9bf4d4bceba8e6

github.com/libgd/libgd/issues/354

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

JSON

Related for VERACODE:6235