Описание
The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read ~700 bytes from the top of the stack, potentially disclosing sensitive information.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | |
| esm-infra-legacy/trusty | not-affected | 2.1.0-3ubuntu0.7 |
| esm-infra/xenial | not-affected | 2.1.1-4ubuntu0.16.04.7 |
| precise/esm | not-affected | 2.0.36~rc1~dfsg-6ubuntu2.5 |
| trusty | released | 2.1.0-3ubuntu0.7 |
| trusty/esm | not-affected | 2.1.0-3ubuntu0.7 |
| upstream | needed | |
| vivid/ubuntu-core | DNE | |
| xenial | released | 2.1.1-4ubuntu0.16.04.7 |
| zesty | released | 2.2.4-2ubuntu0.2 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | not-affected | uses system gd |
| precise/esm | not-affected | uses system gd |
| trusty | not-affected | uses system gd |
| trusty/esm | not-affected | uses system gd |
| upstream | released | 5.6.31 |
| vivid/ubuntu-core | DNE | |
| xenial | DNE | |
| zesty | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/xenial | not-affected | uses system gd |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | released | 7.0.21 |
| vivid/ubuntu-core | DNE | |
| xenial | not-affected | uses system gd |
| zesty | not-affected | uses system gd |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | uses system gd |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | released | 7.1.7 |
| vivid/ubuntu-core | DNE | |
| xenial | DNE | |
| zesty | DNE |
Показывать по
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read ~700 bytes from the top of the stack, potentially disclosing sensitive information.
The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read ~700 bytes from the top of the stack, potentially disclosing sensitive information.
The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in th ...
The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read ~700 bytes from the top of the stack, potentially disclosing sensitive information.
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3