Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libgd vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2016-10168
Integer overflow in gd_io.c in the GD Graphics Library (aka libgd) prior to 2.2.4 allows remote malicious users to have unspecified impact via vectors involving the number of horizontal and vertical chunks in an image.
Libgd Libgd
605
VMScore
CVE-2015-4588
Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Wvware Libwmf 0.2.8.4
Fedoraproject Fedora 21
605
VMScore
CVE-2007-3996
Multiple integer overflows in libgd in PHP prior to 5.2.4 allow remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a large (1) srcW or (2) srcH value to the (a) gdImageCopyResized function, or a large (3) sy (height) or...
Php Php
578
VMScore
CVE-2016-1000104
A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07.
Apache Mod Fcgid
Opensuse Leap 42.1
Opensuse Opensuse 13.2
570
VMScore
CVE-2016-5116
gd_xbm.c in the GD Graphics Library (aka libgd) prior to 2.2.0, as used in certain custom PHP 5.5.x configurations, allows context-dependent malicious users to obtain sensitive information from process memory or cause a denial of service (stack-based buffer under-read and applica...
Libgd Libgd
Opensuse Leap 42.1
Debian Debian Linux 8.0
570
VMScore
CVE-2014-5120
gd_ctx.c in the GD component in PHP 5.4.x prior to 5.4.32 and 5.5.x prior to 5.5.16 does not ensure that pathnames lack %00 sequences, which might allow remote malicious users to overwrite arbitrary files via crafted input to an application that calls the (1) imagegd, (2) imagegd...
Php Php 5.5.0
Php Php 5.4.12
Php Php 5.4.15
Php Php 5.4.19
Php Php 5.5.1
Php Php 5.5.5
Php Php 5.4.14
Php Php 5.4.8
Php Php 5.5.14
Php Php 5.4.17
Php Php 5.5.7
Php Php 5.4.22
Php Php 5.4.9
Php Php 5.4.11
Php Php 5.5.12
Php Php 5.4.10
Php Php 5.5.6
Php Php 5.4.2
Php Php 5.5.3
Php Php 5.4.27
Php Php 5.5.8
Php Php 5.4.16
545
VMScore
CVE-2006-2906
The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas Boutell graphics draw (GD) library (aka libgd) 2.0.33 allows remote malicious users to cause a denial of service (CPU consumption) via malformed GIF data that causes an infinite loop.
Thomas Boutell Graphics Draw Library 2.0.33
1 EDB exploit
516
VMScore
CVE-2017-6363
In the GD Graphics Library (aka LibGD) up to and including 2.2.5, there is a heap-based buffer over-read in tiffWriter in gd_tiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since the GD and GD2 formats are documented to be 'obsolete, and s...
Libgd Libgd
505
VMScore
CVE-2016-0736
In Apache HTTP Server versions 2.4.0 to 2.4.23, mod_session_crypto was encrypting its data/cookie using the configured ciphers with possibly either CBC or ECB modes of operation (AES256-CBC by default), hence no selectable or builtin authenticated encryption. This made it vulnera...
Apache Http Server 2.4.1
Apache Http Server 2.4.20
Apache Http Server 2.4.6
Apache Http Server 2.4.0
Apache Http Server 2.4.12
Apache Http Server 2.4.3
Apache Http Server 2.4.23
Apache Http Server 2.4.8
Apache Http Server 2.4.10
Apache Http Server 2.4.7
Apache Http Server 2.4.14
Apache Http Server 2.4.22
Apache Http Server 2.4.2
Apache Http Server 2.4.19
Apache Http Server 2.4.16
Apache Http Server 2.4.9
Apache Http Server 2.4.21
1 EDB exploit
449
VMScore
CVE-2016-8743
Apache HTTP Server, in all releases before 2.2.32 and 2.4.25, was liberal in the whitespace accepted from requests and sent in response lines and headers. Accepting these different behaviors represented a security concern when httpd participates in any chain of proxies or interac...
Apache Http Server
Netapp Clustered Data Ontap -
Netapp Oncommand Unified Manager -
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Server Tus 7.3
Redhat Enterprise Linux Server Aus 7.3
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Eus 7.3
Redhat Enterprise Linux Eus 7.4
Redhat Enterprise Linux Eus 7.5
Redhat Enterprise Linux Server Tus 7.6
Redhat Enterprise Linux Server Aus 7.6
Redhat Enterprise Linux Eus 7.6
Redhat Enterprise Linux Server Aus 7.7
Redhat Enterprise Linux Server Tus 7.7
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »