CVE-2009-3293
Published: 22 September 2009
Unspecified vulnerability in the imagecolortransparent function in PHP before 5.2.11 has unknown impact and attack vectors related to an incorrect "sanity check for the color index."
Notes
Author | Note |
---|---|
mdeslaur | php not affected - uses system libgd2 libgd2 in hardy is fixed by patch 0002_cvs20070916.patch |
Priority
Status
Package | Release | Status |
---|---|---|
php5 Launchpad, Ubuntu, Debian |
upstream |
Released
(5.2.11)
|
dapper |
Not vulnerable
|
|
hardy |
Not vulnerable
|
|
intrepid |
Not vulnerable
|
|
jaunty |
Not vulnerable
|
|
karmic |
Not vulnerable
|
|
Patches: upstream: http://svn.php.net/viewvc?view=revision&revision=287979 |
||
libgd2 Launchpad, Ubuntu, Debian |
upstream |
Needs triage
|
dapper |
Released
(2.0.33-2ubuntu5.4)
|
|
hardy |
Not vulnerable
(2.0.35.dfsg-3ubuntu2)
|
|
intrepid |
Not vulnerable
(2.0.36~rc1~dfsg-3ubuntu1)
|
|
jaunty |
Not vulnerable
(2.0.36~rc1~dfsg-3ubuntu1)
|
|
karmic |
Not vulnerable
(2.0.36~rc1~dfsg-3ubuntu1)
|
|
Patches: upstream: http://svn.php.net/viewvc?view=revision&revision=108427 (original commit) upstream: http://svn.php.net/viewvc?view=revision&revision=153900 (original commit) upstream: http://svn.php.net/viewvc?view=revision&revision=287979 (fix) |