PublicDate: 2006-06-08 16:06:00 UTC
Candidate: CVE-2006-2906
References:
 https://ubuntu.com/security/notices/USN-298-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2906
Description:
 The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas
 Boutell graphics draw (GD) library (aka libgd) 2.0.33 allows remote
 attackers to cause a denial of service (CPU consumption) via malformed GIF
 data that causes an infinite loop.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_libgd2: released (2.0.33-2ubuntu5.2)
edgy_libgd2: released (2.0.33-4ubuntu2.1)
feisty_libgd2: released (2.0.34~rc1-2ubuntu1.1)
devel_libgd2: released (2.0.34-1ubuntu1)
upstream_libgd2: needs-triage