CVE-2018-14553

Опубликовано: 11 фев. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 4.3

EPSS Низкий

Описание

gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL pointer dereference allowing attackers to crash an application via a specific function call sequence. Only affects PHP when linked with an external libgd (not bundled).

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00020.html
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1599032
Issue Tracking
Permissions Required
https://github.com/libgd/libgd/commit/a93eac0e843148dc2d631c3ba80af17e9c8c860f
Patch
Third Party Advisory
https://github.com/libgd/libgd/pull/580
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/02/msg00014.html
Mailing List
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2024/04/msg00003.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/
https://usn.ubuntu.com/4316-1/
Third Party Advisory
https://usn.ubuntu.com/4316-2/
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00020.html
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1599032
Issue Tracking
Permissions Required
https://github.com/libgd/libgd/commit/a93eac0e843148dc2d631c3ba80af17e9c8c860f
Patch
Third Party Advisory
https://github.com/libgd/libgd/pull/580
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/02/msg00014.html
Mailing List
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2024/04/msg00003.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/
https://usn.ubuntu.com/4316-1/
Third Party Advisory
https://usn.ubuntu.com/4316-2/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:libgd:libgd:*:*:*:*:*:*:*:*

Версия от 2.1.1 (включая) до 2.2.5 (включая)

cpe:2.3:a:libgd:libgd:2.1.0:-:*:*:*:*:*:*

cpe:2.3:a:libgd:libgd:2.1.0:rc2:*:*:*:*:*:*

Конфигурация 2

cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*

Конфигурация 4

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Конфигурация 5

cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

EPSS

Процентиль: 70%

0.00646

Низкий

7.5 High

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-476

Связанные уязвимости

CVE-2018-14553

CVSS3: 7.5

ubuntu

больше 5 лет назад

CVE-2018-14553

CVSS3: 7.4

redhat

больше 5 лет назад

CVE-2018-14553

CVSS3: 7.5

debian

больше 5 лет назад

gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL point ...

GHSA-jw3x-9g83-4hvr

CVSS3: 7.5

github

около 3 лет назад

gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL pointer dereference allowing atteckers to crash an application via a specific function call sequence.

BDU:2022-05698

CVSS3: 7.5

fstec

почти 7 лет назад

Уязвимость функции gdImageClone компонента gd.c графической библиотеки LibGD, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 70%

0.00646

Низкий

7.5 High

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-476