Описание
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflow.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.2.1-1 |
| esm-infra-legacy/trusty | not-affected | 2.1.0-3ubuntu0.1 |
| esm-infra/xenial | not-affected | 2.1.1-4ubuntu0.16.04.1 |
| precise | released | 2.0.36~rc1~dfsg-6ubuntu2.1 |
| trusty | released | 2.1.0-3ubuntu0.1 |
| trusty/esm | not-affected | 2.1.0-3ubuntu0.1 |
| upstream | needed | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| wily | released | 2.1.1-4ubuntu0.15.10.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | not-affected | uses system gd |
| precise | not-affected | uses system gd |
| trusty | not-affected | uses system gd |
| trusty/esm | not-affected | uses system gd |
| upstream | needed | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| wily | not-affected | uses system gd |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | uses system gd |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/xenial | not-affected | uses system gd |
| precise | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needed | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| wily | DNE |
Показывать по
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflow.
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflow.
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or li ...
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflow.
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3