gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL pointer dereference allowing attackers to crash an application via a specific function call sequence. Only affects PHP when linked with an external libgd (not bundled).
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Libgd | Libgd | 2.1.1 (including) | 2.2.5 (including) |
Libgd | Libgd | 2.1.0 (including) | 2.1.0 (including) |
Libgd | Libgd | 2.1.0-rc2 (including) | 2.1.0-rc2 (including) |