CVE-2015-8877
- EPSS 2.32%
- Veröffentlicht 22.05.2016 01:59:09
- Zuletzt bearbeitet 12.04.2025 10:46:40
The gdImageScaleTwoPass function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.2.0, as used in PHP before 5.6.12, uses inconsistent allocate and free approaches, which allows remote attackers to cause a denial of service (memo...
CVE-2016-3074
- EPSS 52.52%
- Veröffentlicht 26.04.2016 14:59:01
- Zuletzt bearbeitet 12.04.2025 10:46:40
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflo...
- EPSS 15.31%
- Veröffentlicht 30.03.2015 10:59:05
- Zuletzt bearbeitet 12.04.2025 10:46:40
The GetCode_ function in gd_gif_in.c in GD 2.1.1 and earlier, as used in PHP before 5.5.21 and 5.6.x before 5.6.5, allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted GIF image that is improperl...
CVE-2007-2756
- EPSS 7%
- Veröffentlicht 18.05.2007 18:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.