CVE-2007-2756

N/A

Descricao

The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado5/18/2007

Ultima modificacao4/23/2026

Fontenvd

Avistamentos honeypot0

Produtos afetados

libgd:libgd

Referencias

http://bugs.libgd.org/?do=details&task_id=86(cve@mitre.org)

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795(cve@mitre.org)

http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html(cve@mitre.org)

http://osvdb.org/35788(cve@mitre.org)

http://osvdb.org/36643(cve@mitre.org)

http://rhn.redhat.com/errata/RHSA-2007-0889.html(cve@mitre.org)

http://secunia.com/advisories/25353(cve@mitre.org)

http://secunia.com/advisories/25362(cve@mitre.org)

http://secunia.com/advisories/25378(cve@mitre.org)

http://secunia.com/advisories/25535(cve@mitre.org)

http://secunia.com/advisories/25575(cve@mitre.org)

http://secunia.com/advisories/25590(cve@mitre.org)

http://secunia.com/advisories/25646(cve@mitre.org)

http://secunia.com/advisories/25657(cve@mitre.org)

http://secunia.com/advisories/25658(cve@mitre.org)

http://secunia.com/advisories/25787(cve@mitre.org)

http://secunia.com/advisories/25855(cve@mitre.org)

http://secunia.com/advisories/26048(cve@mitre.org)

http://secunia.com/advisories/26231(cve@mitre.org)

http://secunia.com/advisories/26390(cve@mitre.org)

http://secunia.com/advisories/26871(cve@mitre.org)

http://secunia.com/advisories/26895(cve@mitre.org)

http://secunia.com/advisories/26930(cve@mitre.org)

http://secunia.com/advisories/26967(cve@mitre.org)

http://secunia.com/advisories/27037(cve@mitre.org)

http://secunia.com/advisories/27102(cve@mitre.org)

http://secunia.com/advisories/27110(cve@mitre.org)

http://secunia.com/advisories/27545(cve@mitre.org)

http://secunia.com/advisories/29157(cve@mitre.org)

http://secunia.com/advisories/30168(cve@mitre.org)

http://security.gentoo.org/glsa/glsa-200708-05.xml(cve@mitre.org)

http://security.gentoo.org/glsa/glsa-200711-34.xml(cve@mitre.org)

http://security.gentoo.org/glsa/glsa-200805-13.xml(cve@mitre.org)

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.482863(cve@mitre.org)

http://support.avaya.com/elmodocs2/security/ASA-2007-449.htm(cve@mitre.org)

http://www.gentoo.org/security/en/glsa/glsa-200710-02.xml(cve@mitre.org)

http://www.libgd.org/ReleaseNote020035(cve@mitre.org)

http://www.mandriva.com/security/advisories?name=MDKSA-2007:122(cve@mitre.org)

http://www.mandriva.com/security/advisories?name=MDKSA-2007:123(cve@mitre.org)

http://www.mandriva.com/security/advisories?name=MDKSA-2007:124(cve@mitre.org)

http://www.mandriva.com/security/advisories?name=MDKSA-2007:187(cve@mitre.org)

http://www.novell.com/linux/security/advisories/2007_13_sr.html(cve@mitre.org)

http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.020.html(cve@mitre.org)

http://www.php.net/releases/5_2_3.php(cve@mitre.org)

http://www.redhat.com/support/errata/RHSA-2007-0890.html(cve@mitre.org)

http://www.redhat.com/support/errata/RHSA-2007-0891.html(cve@mitre.org)

http://www.redhat.com/support/errata/RHSA-2008-0146.html(cve@mitre.org)

http://www.securityfocus.com/bid/24089(cve@mitre.org)

http://www.securitytracker.com/id?1018187(cve@mitre.org)

http://www.trustix.org/errata/2007/0019/(cve@mitre.org)

http://www.trustix.org/errata/2007/0023/(cve@mitre.org)

http://www.ubuntu.com/usn/usn-473-1(cve@mitre.org)

http://www.vupen.com/english/advisories/2007/1904(cve@mitre.org)

http://www.vupen.com/english/advisories/2007/1905(cve@mitre.org)

http://www.vupen.com/english/advisories/2007/2016(cve@mitre.org)

http://www.vupen.com/english/advisories/2007/2336(cve@mitre.org)

http://www.vupen.com/english/advisories/2007/3386(cve@mitre.org)

https://exchange.xforce.ibmcloud.com/vulnerabilities/34420(cve@mitre.org)

https://issues.rpath.com/browse/RPL-1394(cve@mitre.org)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10779(cve@mitre.org)

https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00354.html(cve@mitre.org)

https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00397.html(cve@mitre.org)

http://bugs.libgd.org/?do=details&task_id=86(af854a3a-2127-422b-91ae-364da2661108)

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html(af854a3a-2127-422b-91ae-364da2661108)

http://osvdb.org/35788(af854a3a-2127-422b-91ae-364da2661108)

http://osvdb.org/36643(af854a3a-2127-422b-91ae-364da2661108)

http://rhn.redhat.com/errata/RHSA-2007-0889.html(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25353(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25362(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25378(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25535(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25575(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25590(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25646(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25657(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25658(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25787(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25855(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/26048(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/26231(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/26390(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/26871(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/26895(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/26930(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/26967(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/27037(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/27102(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/27110(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/27545(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/29157(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/30168(af854a3a-2127-422b-91ae-364da2661108)

http://security.gentoo.org/glsa/glsa-200708-05.xml(af854a3a-2127-422b-91ae-364da2661108)

http://security.gentoo.org/glsa/glsa-200711-34.xml(af854a3a-2127-422b-91ae-364da2661108)

http://security.gentoo.org/glsa/glsa-200805-13.xml(af854a3a-2127-422b-91ae-364da2661108)

http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.482863(af854a3a-2127-422b-91ae-364da2661108)

http://support.avaya.com/elmodocs2/security/ASA-2007-449.htm(af854a3a-2127-422b-91ae-364da2661108)

http://www.gentoo.org/security/en/glsa/glsa-200710-02.xml(af854a3a-2127-422b-91ae-364da2661108)

http://www.libgd.org/ReleaseNote020035(af854a3a-2127-422b-91ae-364da2661108)

http://www.mandriva.com/security/advisories?name=MDKSA-2007:122(af854a3a-2127-422b-91ae-364da2661108)

http://www.mandriva.com/security/advisories?name=MDKSA-2007:123(af854a3a-2127-422b-91ae-364da2661108)

http://www.mandriva.com/security/advisories?name=MDKSA-2007:124(af854a3a-2127-422b-91ae-364da2661108)

http://www.mandriva.com/security/advisories?name=MDKSA-2007:187(af854a3a-2127-422b-91ae-364da2661108)

http://www.novell.com/linux/security/advisories/2007_13_sr.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.020.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.php.net/releases/5_2_3.php(af854a3a-2127-422b-91ae-364da2661108)

http://www.redhat.com/support/errata/RHSA-2007-0890.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.redhat.com/support/errata/RHSA-2007-0891.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.redhat.com/support/errata/RHSA-2008-0146.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/24089(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id?1018187(af854a3a-2127-422b-91ae-364da2661108)

http://www.trustix.org/errata/2007/0019/(af854a3a-2127-422b-91ae-364da2661108)

http://www.trustix.org/errata/2007/0023/(af854a3a-2127-422b-91ae-364da2661108)

http://www.ubuntu.com/usn/usn-473-1(af854a3a-2127-422b-91ae-364da2661108)

http://www.vupen.com/english/advisories/2007/1904(af854a3a-2127-422b-91ae-364da2661108)

http://www.vupen.com/english/advisories/2007/1905(af854a3a-2127-422b-91ae-364da2661108)

http://www.vupen.com/english/advisories/2007/2016(af854a3a-2127-422b-91ae-364da2661108)

http://www.vupen.com/english/advisories/2007/2336(af854a3a-2127-422b-91ae-364da2661108)

http://www.vupen.com/english/advisories/2007/3386(af854a3a-2127-422b-91ae-364da2661108)

https://exchange.xforce.ibmcloud.com/vulnerabilities/34420(af854a3a-2127-422b-91ae-364da2661108)

https://issues.rpath.com/browse/RPL-1394(af854a3a-2127-422b-91ae-364da2661108)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10779(af854a3a-2127-422b-91ae-364da2661108)

https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00354.html(af854a3a-2127-422b-91ae-364da2661108)

https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00397.html(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.