CVE-2007-3996 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-3996
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-3996

Description: Multiple integer overflows in libgd in PHP before 5.2.4 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large (1) srcW or (2) srcH value to the (a) gdImageCopyResized function, or a large (3) sy (height) or (4) sx (width) value to the (b) gdImageCreate or the (c) gdImageCreateTrueColor function.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/36383 http://xforce.iss.net/xforce/xfdb/36382 UBUNTU http://www.ubuntu.com/usn/usn-557-1 TRUSTIX http://www.trustix.org/errata/2007/0026/ SUSE http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html SREASON http://securityreason.com/securityalert/3103 SAID Secunia Advisory: SA31168 Secunia Advisory: SA28658 Secunia Advisory: SA28147 Secunia Advisory: SA28009 Secunia Advisory: SA27102 Secunia Advisory: SA27545 Secunia Advisory: SA27377 Secunia Advisory: SA27351 Secunia Advisory: SA26967 Secunia Advisory: SA26895 Secunia Advisory: SA26871 Secunia Advisory: SA26930 Secunia Advisory: SA26642 Secunia Advisory: SA26822 Secunia Advisory: SA26838 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0890.html http://www.redhat.com/support/errata/RHSA-2007-0891.html http://www.redhat.com/support/errata/RHSA-2007-0888.html http://rhn.redhat.com/errata/RHSA-2007-0889.html MISC http://secweb.se/en/advisories/php-imagecreatetruecolor-integer-overflow/ http://secweb.se/en/advisories/php-imagecopyresized-integer-overflow/ MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:187 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200710-02.xml http://security.gentoo.org/glsa/glsa-200712-13.xml FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1613 CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=201546 http://support.avaya.com/elmodocs2/security/ASA-2007-449.htm http://www.php.net/releases/5_2_4.php http://www.php.net/ChangeLog-5.php#5.2.4

Return to the previous page.