CVE-2007-3475 in Ubuntu

CVE-2007-3475

Priority

Low

Description

The GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote
attackers to cause a denial of service (crash) via a GIF image that has no
global color map.

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3475
http://www.ubuntu.com/usn/usn-854-1

Notes

mdeslaur>

Package

Source: libgd2 (LP Ubuntu Debian)

Upstream:	released (2.0.35)
Ubuntu 8.04 LTS (Hardy Heron):	not-affected (2.0.35.dfsg-3ubuntu2)
Ubuntu 10.04 LTS (Lucid Lynx):	not-affected (2.0.35.dfsg-3ubuntu2)

Patches:

Upstream:

http://cvs.php.net/viewvc.cgi/php-src/ext/gd/libgd/gd_gif_in.c?r1=1.15&r2=1.16

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2012-06-01 15:18:01 UTC (commit 5347)