Launchpad.net

CVE 2007-3478

Race condition in gdImageStringFTEx (gdft_draw_bitmap) in gdft.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors, possibly involving truetype font (TTF) support.

See the

CVE page on Mitre.org for more details.

References

MISC: http://bugs.php.net/bu...
MISC: http://www.libgd.org/R...
SECUNIA: 25855
SUSE: SUSE-SR:2007:015
SECUNIA: 26272
GENTOO: GLSA-200708-05
SECUNIA: 26390
TRUSTIX: 2007-0024
SECUNIA: 26415
SECUNIA: 26467
CONFIRM: https://issues.rpath.c...
SECUNIA: 26663
FEDORA: FEDORA-2007-2055
SECUNIA: 26766
MANDRIVA: MDKSA-2007:153
MANDRIVA: MDKSA-2007:164
CONFIRM: https://bugzilla.redha...
FEDORA: FEDORA-2007-692
SECUNIA: 26856
GENTOO: GLSA-200711-34
GENTOO: GLSA-200805-13
SECUNIA: 30168
OSVDB: 37740
VUPEN: ADV-2007-2336
FEDORA: FEDORA-2010-19022
FEDORA: FEDORA-2010-19033
SECUNIA: 42813
VUPEN: ADV-2011-0022
CONFIRM: http://bugs.libgd.org/...
BUGTRAQ: 20070907 FLEA-2007-005...

Launchpad.net

CVE 2007-3478

Related bugs

References