CVSS: 7.5EPSS: 11%CPEs: 1EXPL: 0CVE-2007-3475 – libgd Denial of service by GIF images without a global color map
https://notcve.org/view.php?id=CVE-2007-3475
28 Jun 2007 — The GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via a GIF image that has no global color map. GD Graphics Library (libgd) anterior a 2.0.35 permite a atacantes remotos con la complicidad del usuario provocar una denegación de servicio (caída) mediante una imagen GIF que no tiene color global de mapa. • ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz •
CVSS: 7.5EPSS: 5%CPEs: 1EXPL: 0CVE-2007-3476 – libgd Denial of service by corrupted GIF images
https://notcve.org/view.php?id=CVE-2007-3476
28 Jun 2007 — Array index error in gd_gif_in.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash and heap corruption) via large color index values in crafted image data, which results in a segmentation fault. Error de índice de array en gd_gif_in.c de la librería gráfica GD (libgd) anterior a 2.0.35 permite a atacantes remotos con la intervención del usuario provocar una denegación de servicio (caída y corrupción del montículo) mediante valores de í... • ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz • CWE-189: Numeric Errors •
CVSS: 6.5EPSS: 11%CPEs: 1EXPL: 0CVE-2007-3478
https://notcve.org/view.php?id=CVE-2007-3478
28 Jun 2007 — Race condition in gdImageStringFTEx (gdft_draw_bitmap) in gdft.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors, possibly involving truetype font (TTF) support. Condición de carrera en gdImageStringFTEx (gdft_draw_bitmap) en gdft.c en GD Graphics Library (libgd) anterior a 2.0.35 permite a atacantes remotos con la complicidad del usuario provocar una denegación de servicio (caída) mediante vectores no especi... • http://bugs.libgd.org/?do=details&task_id=48 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 10.0EPSS: 4%CPEs: 14EXPL: 0CVE-2004-0941 – gd: additional overflows
https://notcve.org/view.php?id=CVE-2004-0941
19 Nov 2004 — Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function, a different set of vulnerabilities than CVE-2004-0990. New libwmf packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. • http://secunia.com/advisories/13179 •