[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96125

 
 

909

 
 

78020

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2017-6362

Date: (C)2017-09-11   (M)2017-10-12
 
CVSS Score: 5.0Access Vector: NETWORK
Exploitability Subscore: 10.0Access Complexity: LOW
Impact Subscore: 2.9Authentication: NONE
 Confidentiality: NONE
 Integrity: NONE
 Availability: PARTIAL











Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors.

Reference:
DSA-3961
FEDORA-2017-7cc0e6a5f5
https://github.com/libgd/libgd/issues/381
https://github.com/libgd/libgd/releases/tag/gd-2.2.5

CPE    1
cpe:/o:debian:debian_linux:8.0
CWE    1
CWE-415
OVAL    4
oval:org.secpod.oval:def:703814
oval:org.secpod.oval:def:603085
oval:org.secpod.oval:def:113112
oval:org.secpod.oval:def:113124
...

© 2013 SecPod Technologies