Back to search
CVE-2018-1000222
Published: Aug 20, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Code Execution . This attack appear to be exploitable via Specially Crafted Jpeg Image can trigger double free. This vulnerability appears to have been fixed in after commit ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://github.com/libgd/libgd/issues/447
x_refsource_CONFIRM
USN-3755-1
vendor-advisory
x_refsource_UBUNTU
[debian-lts-announce] 20190130 [SECURITY] [DLA 1651-1] libgd2 security update
mailing-list
x_refsource_MLIST
GLSA-201903-18
vendor-advisory
x_refsource_GENTOO
FEDORA-2020-e795f92d79
vendor-advisory
x_refsource_FEDORA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now