Уязвимость CVE-2007-0455: Информация

Описание

Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Graphics Library 2.0.33 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted string with a JIS encoded font.

Важность: HIGH (7,5)

URL: https://nvd.nist.gov/vuln/detail/CVE-2007-0455
Опубликовано: 30 января 2007 г.
Изменено: 21 июля 2022 г.
Идентификатор типа ошибки: CWE-120

Ссылки на рекомендации, решения и инструменты

Ссылка
Ресурс
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=224607
  • Issue Tracking
  • Third Party Advisory
23916
  • Not Applicable
  • Vendor Advisory
[security-announce] 20070208 rPSA-2007-0028-1 gd
  • Broken Link
https://issues.rpath.com/browse/RPL-1030
  • Broken Link
FEDORA-2007-150
  • Broken Link
MDKSA-2007:035
  • Broken Link
MDKSA-2007:036
  • Broken Link
MDKSA-2007:038
  • Broken Link
2007-0007
  • Broken Link
22289
  • Third Party Advisory
  • VDB Entry
24022
  • Not Applicable
24052
  • Not Applicable
24053
  • Not Applicable
24107
  • Not Applicable
24143
  • Not Applicable
24151
  • Not Applicable
RHSA-2007:0155
  • Third Party Advisory
24924
  • Not Applicable
https://issues.rpath.com/browse/RPL-1268
  • Broken Link
RHSA-2007:0153
  • Third Party Advisory
RHSA-2007:0162
  • Third Party Advisory
24965
  • Not Applicable
24945
  • Not Applicable
MDKSA-2007:109
  • Broken Link
USN-473-1
  • Third Party Advisory
25575
  • Not Applicable
RHSA-2008:0146
  • Third Party Advisory
29157
  • Not Applicable
42813
  • Not Applicable
FEDORA-2010-19033
  • Mailing List
  • Third Party Advisory
ADV-2011-0022
  • Permissions Required
FEDORA-2010-19022
  • Mailing List
  • Third Party Advisory
ADV-2007-0400
  • Permissions Required
oval:org.mitre.oval:def:11303
  • Third Party Advisory
20070418 rPSA-2007-0073-1 php php-mysql php-pgsql
  • Third Party Advisory
  • VDB Entry

    1. Конфигурация 1

      cpe:2.3:a:gd_graphics_library_project:gd_graphics_library:*:*:*:*:*:*:*:*
      End including
      2.0.33

      Конфигурация 2

      cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
      Start including
      4.4.0
      End excliding
      4.4.7

      Конфигурация 3

      cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
      cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
      cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*

      Конфигурация 4

      cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*
      cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:*

      Конфигурация 5

      cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*
      cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:*:*:*:*:*:*:*
      cpe:2.3:o:redhat:enterprise_linux_server:4.0:*:*:*:*:*:*:*
      cpe:2.3:o:redhat:enterprise_linux_workstation:4.0:*:*:*:*:*:*:*
      cpe:2.3:o:redhat:enterprise_linux_workstation:3.0:*:*:*:*:*:*:*
      cpe:2.3:o:redhat:enterprise_linux_server:3.0:*:*:*:*:*:*:*
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Версия: v24.5.3
Наверх