|Package(s):||php5, gd||CVE #(s):||CVE-2014-2497|
|Created:||June 12, 2014||Updated:||March 29, 2015|
|Description:||From the CVE entry:
The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP 5.4.26 and earlier, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted color table in an XPM file.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds