November 16, 2009

Debian Security Advisory 1936 libgd2 - several vulnerabilities

Article Source Debian Security Advisories
November 16, 2009, 4:00 pm

Several vulnerabilities have been discovered in libgd2, a library for programmatic graphics creation and manipulation. The Common Vulnerabilities and Exposures project identifies the following problems:

  • CVE-2007-0455

    Kees Cook discovered a buffer overflow in libgd2's font renderer. An attacker could cause denial of service (application crash) and possibly execute arbitrary code via a crafted string with a JIS encoded font. This issue only affects the oldstable distribution (etch)...

Click Here!