Back to search
CVE-2007-2756
Published: May 18, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
26231
third-party-advisory
x_refsource_SECUNIA
36643
vdb-entry
x_refsource_OSVDB
1018187
vdb-entry
x_refsource_SECTRACK
29157
third-party-advisory
x_refsource_SECUNIA
25658
third-party-advisory
x_refsource_SECUNIA
27110
third-party-advisory
x_refsource_SECUNIA
25590
third-party-advisory
x_refsource_SECUNIA
26048
third-party-advisory
x_refsource_SECUNIA
gd-gdpngreaddata-dos(34420)
vdb-entry
x_refsource_XF
25362
third-party-advisory
x_refsource_SECUNIA
OpenPKG-SA-2007.020
vendor-advisory
x_refsource_OPENPKG
25657
third-party-advisory
x_refsource_SECUNIA
FEDORA-2007-709
vendor-advisory
x_refsource_FEDORA
25855
third-party-advisory
x_refsource_SECUNIA
26967
third-party-advisory
x_refsource_SECUNIA
MDKSA-2007:122
vendor-advisory
x_refsource_MANDRIVA
ADV-2007-2016
vdb-entry
x_refsource_VUPEN
GLSA-200805-13
vendor-advisory
x_refsource_GENTOO
GLSA-200710-02
vendor-advisory
x_refsource_GENTOO
MDKSA-2007:123
vendor-advisory
x_refsource_MANDRIVA
24089
vdb-entry
x_refsource_BID
http://www.libgd.org/ReleaseNote020035
x_refsource_CONFIRM
GLSA-200708-05
vendor-advisory
x_refsource_GENTOO
30168
third-party-advisory
x_refsource_SECUNIA
MDKSA-2007:124
vendor-advisory
x_refsource_MANDRIVA
ADV-2007-1904
vdb-entry
x_refsource_VUPEN
26930
third-party-advisory
x_refsource_SECUNIA
35788
vdb-entry
x_refsource_OSVDB
FEDORA-2007-2215
vendor-advisory
x_refsource_FEDORA
ADV-2007-2336
vdb-entry
x_refsource_VUPEN
RHSA-2007:0889
vendor-advisory
x_refsource_REDHAT
2007-0023
vendor-advisory
x_refsource_TRUSTIX
25353
third-party-advisory
x_refsource_SECUNIA
ADV-2007-3386
vdb-entry
x_refsource_VUPEN
http://bugs.libgd.org/?do=details&task_id=86
x_refsource_CONFIRM
2007-0019
vendor-advisory
x_refsource_TRUSTIX
27037
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2007:013
vendor-advisory
x_refsource_SUSE
25378
third-party-advisory
x_refsource_SECUNIA
27545
third-party-advisory
x_refsource_SECUNIA
GLSA-200711-34
vendor-advisory
x_refsource_GENTOO
http://support.avaya.com/elmodocs2/security/ASA-2007-449.htm
x_refsource_CONFIRM
SSA:2007-152-01
vendor-advisory
x_refsource_SLACKWARE
25646
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0146
vendor-advisory
x_refsource_REDHAT
http://www.php.net/releases/5_2_3.php
x_refsource_CONFIRM
SSRT071447
vendor-advisory
x_refsource_HP
https://issues.rpath.com/browse/RPL-1394
x_refsource_CONFIRM
HPSBUX02262
vendor-advisory
x_refsource_HP
25535
third-party-advisory
x_refsource_SECUNIA
MDKSA-2007:187
vendor-advisory
x_refsource_MANDRIVA
27102
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:10779
vdb-entry
signature
x_refsource_OVAL
26895
third-party-advisory
x_refsource_SECUNIA
25787
third-party-advisory
x_refsource_SECUNIA
25575
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0890
vendor-advisory
x_refsource_REDHAT
ADV-2007-1905
vdb-entry
x_refsource_VUPEN
26390
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0891
vendor-advisory
x_refsource_REDHAT
USN-473-1
vendor-advisory
x_refsource_UBUNTU
26871
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2007:044
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now