The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x prior to 5.5.9 does not check return values, which allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via invalid imagecrop arguments that lead to use of a NULL pointer as a return value, a different vulnerability than CVE-2013-7226.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
canonical ubuntu linux 13.10 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 10.04 |
||
php php 5.5.0 |
||
php php 5.5.1 |
||
php php 5.5.5 |
||
php php 5.5.7 |
||
php php 5.5.6 |
||
php php 5.5.3 |
||
php php 5.5.4 |
||
php php |
||
php php 5.5.2 |