CVE Vulnerabilities

CVE-2007-3476

Published: Jun 28, 2007 | Modified: Oct 16, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Array index error in gd_gif_in.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash and heap corruption) via large color index values in crafted image data, which results in a segmentation fault.

Affected Software

Name Vendor Start Version End Version
Gdlib Gd_graphics_library * 2.0.34
Red Hat Enterprise Linux 4 RedHat gd-0:2.0.28-5.4E.el4_6.1 *
Red Hat Enterprise Linux 5 RedHat gd-0:2.0.33-9.4.el5_1.1 *
Libgd2 Ubuntu dapper *
Libgd2 Ubuntu edgy *
Libgd2 Ubuntu feisty *
Libgd2 Ubuntu gutsy *
Libgd2 Ubuntu upstream *

References