DescriptionInteger overflow in GD Graphics Library libgd 2.0.28 (libgd2), and possibly other versions, allows remote attackers to cause a denial of service and possibly execute arbitrary code via PNG image files with large image rows values that lead to a heap-based buffer overflow in the gdImageCreateFromPngCtx function, a different set of vulnerabilities than CVE-2004-0941.
Overall state of this security issue: Resolved
This issue is currently rated as having critical severity.
|National Vulnerability Database|
- SUSE-SR:2006:003, published Fri, 03 Feb 2006 12:00:00 +0000
List of released packages
|Product(s)||Fixed package version(s)||References|
|SUSE LINUX 10.0|| |
|SUSE LINUX 9.1 for IA32 |
SUSE LINUX 9.1 for x86-64
|SUSE LINUX 9.2|| |
|SUSE LINUX 9.3|| |
|Open Enterprise Server|| ||
YOU Patch Nr: 10832