Description
gd_xbm.c in the GD Graphics Library (aka libgd) before 2.2.0, as used in certain custom PHP 5.5.x configurations, allows context-dependent attackers to obtain sensitive information from process memory or cause a denial of service (stack-based buffer under-read and application crash) via a long name.
Mitigation
Minimal update. May introduce new vulnerabilities or breaking changes.
|
 debian 11 | | | 2.2.1-1 |
 alpine v3.2 | | =2.0.35-r0 || =2.0.35-r1 || =2.0.35-r2 || =2.0.36_rc1-r1 || =2.0.36_rc1-r2 || =2.0.36_rc1-r3 || =2.0.36_rc1-r4 || =2.0.36_rc1-r5 || =2.0.36_rc1-r6 || =2.0.36_rc1-r7 || =2.0.36_rc1-r8 || =2.0.36_rc1-r9 || =2.1.0-r0 || =2.1.0-r1 || =2.1.1-r0 || =2.1.1-r1 || =2.1.1-r2 || >=0 <2.2.1-r2 | 2.2.1-r2 |
debian 13 | | | 2.2.1-1 |
debian 14 | | | 2.2.1-1 |
debian 12 | | | 2.2.1-1 |
alpine v3.3 | | =2.0.35-r0 || =2.0.35-r1 || =2.0.35-r2 || =2.0.36_rc1-r1 || =2.0.36_rc1-r2 || =2.0.36_rc1-r3 || =2.0.36_rc1-r4 || =2.0.36_rc1-r5 || =2.0.36_rc1-r6 || =2.0.36_rc1-r7 || =2.0.36_rc1-r8 || =2.0.36_rc1-r9 || =2.1.0-r0 || =2.1.0-r1 || =2.1.1-r0 || =2.1.1-r1 || =2.1.1-r2 || >=0 <2.2.1-r2 | 2.2.1-r2 |
