Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-1000222

Опубликовано: 20 авг. 2018
Источник: ubuntu
Приоритет: medium
CVSS2: 6.8
CVSS3: 8.8

Описание

Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Code Execution . This attack appear to be exploitable via Specially Crafted Jpeg Image can trigger double free. This vulnerability appears to have been fixed in after commit ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5.

РелизСтатусПримечание
bionic

released

2.2.5-4ubuntu0.2
devel

released

2.2.5-4ubuntu1
esm-infra-legacy/trusty

released

2.1.0-3ubuntu0.10
esm-infra/bionic

released

2.2.5-4ubuntu0.2
esm-infra/xenial

released

2.1.1-4ubuntu0.16.04.10
precise/esm

not-affected

code not present
trusty

released

2.1.0-3ubuntu0.10
trusty/esm

released

2.1.0-3ubuntu0.10
upstream

needed

xenial

released

2.1.1-4ubuntu0.16.04.10

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

not-affected

uses system gd
precise/esm

not-affected

uses system gd
trusty

not-affected

uses system gd
trusty/esm

not-affected

uses system gd
upstream

needs-triage

xenial

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/xenial

not-affected

uses system gd
precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

needs-triage

xenial

not-affected

uses system gd

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

needs-triage

xenial

DNE

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2018-1000222

CVSS3: 5.3
redhat
больше 7 лет назад

Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Code Execution . This attack appear to be exploitable via Specially Crafted Jpeg Image can trigger double free. This vulnerability appears to have been fixed in after commit ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5.

nvd логотип

CVE-2018-1000222

CVSS3: 8.8
nvd
больше 7 лет назад

Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Code Execution . This attack appear to be exploitable via Specially Crafted Jpeg Image can trigger double free. This vulnerability appears to have been fixed in after commit ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5.

debian логотип

CVE-2018-1000222

CVSS3: 8.8
debian
больше 7 лет назад

Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability ...

suse-cvrf логотип

openSUSE-SU-2018:2941-1

suse-cvrf
больше 7 лет назад

Security update for gd

suse-cvrf логотип

openSUSE-SU-2018:2851-1

suse-cvrf
больше 7 лет назад

Security update for gd

6.8 Medium

CVSS2

8.8 High

CVSS3