Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors related to decrementing the u variable.
The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Libgd | Libgd | * | 2.2.3 (including) |
| Libgd2 | Ubuntu | trusty | * |
| Libgd2 | Ubuntu | xenial | * |
| Libgd2 | Ubuntu | yakkety | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7 | RedHat | rh-php71-php-0:7.1.30-1.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7 | RedHat | rh-php72-php-0:7.2.24-1.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.4 EUS | RedHat | rh-php71-php-0:7.1.30-1.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS | RedHat | rh-php71-php-0:7.1.30-1.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS | RedHat | rh-php72-php-0:7.2.24-1.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS | RedHat | rh-php71-php-0:7.1.30-1.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS | RedHat | rh-php72-php-0:7.2.24-1.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS | RedHat | rh-php72-php-0:7.2.24-1.el7 | * |