Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2013-7456

Опубликовано: 24 сент. 2013
Источник: redhat
CVSS2: 2.6
EPSS Низкий

Описание

gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.1.1, as used in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7, allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted image that is mishandled by the imagescale function.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5gdNot affected
Red Hat Enterprise Linux 5phpNot affected
Red Hat Enterprise Linux 5php53Not affected
Red Hat Enterprise Linux 6gdNot affected
Red Hat Enterprise Linux 6phpNot affected
Red Hat Enterprise Linux 7gdNot affected
Red Hat Enterprise Linux 7phpNot affected
Red Hat Software Collectionsphp54-phpNot affected
Red Hat Software Collectionsphp55-phpWill not fix
Red Hat Software Collections for Red Hat Enterprise Linux 6rh-php56FixedRHSA-2016:275015.11.2016

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-125
https://bugzilla.redhat.com/show_bug.cgi?id=1340433gd: incorrect boundary adjustment in _gdContributionsCalc

EPSS

Процентиль: 75%
0.00892
Низкий

2.6 Low

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2013-7456

CVSS3: 7.6
ubuntu
около 9 лет назад

gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.1.1, as used in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7, allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted image that is mishandled by the imagescale function.

nvd логотип

CVE-2013-7456

CVSS3: 7.6
nvd
около 9 лет назад

gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.1.1, as used in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7, allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted image that is mishandled by the imagescale function.

debian логотип

CVE-2013-7456

CVSS3: 7.6
debian
около 9 лет назад

gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.1.1 ...

github логотип

GHSA-f3c2-5v72-7m7f

CVSS3: 7.6
github
больше 3 лет назад

gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.1.1, as used in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7, allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted image that is mishandled by the imagescale function.

suse-cvrf логотип

openSUSE-SU-2016:1688-1

suse-cvrf
около 9 лет назад

Security update for php5

EPSS

Процентиль: 75%
0.00892
Низкий

2.6 Low

CVSS2