CVE-2014-9709 (retired)

Priority
Description
The GetCode_ function in gd_gif_in.c in GD 2.1.1 and earlier, as used in
PHP before 5.5.21 and 5.6.x before 5.6.5, allows remote attackers to cause
a denial of service (buffer over-read and application crash) via a crafted
GIF image that is improperly handled by the gdImageCreateFromGif function.
Notes
 mdeslaur> php5 uses system gd
Assigned-to
mdeslaur
More Information

Updated: 2019-03-26 12:13:56 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)