Secunia CSI 5.0
Products
Solutions
Customers
Partner
Resources
Company
Careers
Community

CVE Reference: CVE-2007-2756
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2007-2756

Description:
The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/34420

UBUNTU
  http://www.ubuntu.com/usn/usn-473-1

TRUSTIX
  http://www.trustix.org/errata/2007/0019/
  http://www.trustix.org/errata/2007/0023/

SUSE
  http://www.novell.com/linux/security/advisories/2007_13_sr.html
  http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html

ST
  1018187

SLACKWARE
  http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.482863

SAID
  Secunia Advisory: SA27102
  Secunia Advisory: SA27545
  Secunia Advisory: SA25787
  Secunia Advisory: SA27110
  Secunia Advisory: SA27037
  Secunia Advisory: SA26967
  Secunia Advisory: SA26895
  Secunia Advisory: SA26871
  Secunia Advisory: SA26930
  Secunia Advisory: SA26390
  Secunia Advisory: SA26231
  Secunia Advisory: SA26048
  Secunia Advisory: SA25855
  Secunia Advisory: SA25657
  Secunia Advisory: SA25658
  Secunia Advisory: SA25646
  Secunia Advisory: SA25575
  Secunia Advisory: SA25590
  Secunia Advisory: SA25535
  Secunia Advisory: SA25353
  Secunia Advisory: SA25362
  Secunia Advisory: SA25378
  Secunia Advisory: SA29157
  Secunia Advisory: SA30168

REDHAT
  http://www.redhat.com/support/errata/RHSA-2007-0890.html
  http://www.redhat.com/support/errata/RHSA-2008-0146.html
  http://www.redhat.com/support/errata/RHSA-2007-0891.html
  http://rhn.redhat.com/errata/RHSA-2007-0889.html

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10779

OPENPKG
  http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.020.html

MANDRIVA
  http://www.mandriva.com/security/advisories?name=MDKSA-2007:123
  http://www.mandriva.com/security/advisories?name=MDKSA-2007:124
  http://www.mandriva.com/security/advisories?name=MDKSA-2007:187
  http://www.mandriva.com/security/advisories?name=MDKSA-2007:122

HP
  http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795

GENTOO
  http://security.gentoo.org/glsa/glsa-200708-05.xml
  http://www.gentoo.org/security/en/glsa/glsa-200710-02.xml
  http://security.gentoo.org/glsa/glsa-200805-13.xml
  http://security.gentoo.org/glsa/glsa-200711-34.xml

FEDORA

CONFIRM
  http://support.avaya.com/elmodocs2/security/ASA-2007-449.htm
  http://www.libgd.org/ReleaseNote020035
  http://www.php.net/releases/5_2_3.php
  http://bugs.libgd.org/?do=details&task_id=86

BID
  24089


Return to the previous page.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Factsheets
Reports & Papers
Webinars
Events
 About us
Careers
Memberships
Newsroom
 
© 2002-2012 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability