ByteOS Network

Vulnerability Details :

CVE-2007-3475

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-28 Jun, 2007 | 18:00

Updated At-07 Aug, 2024 | 14:21

The GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via a GIF image that has no global color map.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:mitre

Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At:28 Jun, 2007 | 18:00

Updated At:07 Aug, 2024 | 14:21

▼CVE Numbering Authority (CNA)

The GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via a GIF image that has no global color map.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://www.trustix.org/errata/2007/0024/	vendor-advisory x_refsource_TRUSTIX
http://www.mandriva.com/security/advisories?name=MDKSA-2007:164	vendor-advisory x_refsource_MANDRIVA
http://secunia.com/advisories/29157	third-party-advisory x_refsource_SECUNIA
http://www.libgd.org/ReleaseNote020035	x_refsource_MISC
http://secunia.com/advisories/26415	third-party-advisory x_refsource_SECUNIA
https://issues.rpath.com/browse/RPL-1643	x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=277421	x_refsource_CONFIRM
http://security.gentoo.org/glsa/glsa-200805-13.xml	vendor-advisory x_refsource_GENTOO
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9728	vdb-entry signature x_refsource_OVAL
http://bugs.libgd.org/?do=details&task_id=70	x_refsource_CONFIRM
http://www.securityfocus.com/archive/1/478796/100/0/threaded	mailing-list x_refsource_BUGTRAQ
http://secunia.com/advisories/26467	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/42813	third-party-advisory x_refsource_SECUNIA
http://security.gentoo.org/glsa/glsa-200708-05.xml	vendor-advisory x_refsource_GENTOO
http://secunia.com/advisories/30168	third-party-advisory x_refsource_SECUNIA
http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00311.html	vendor-advisory x_refsource_FEDORA
http://www.vupen.com/english/advisories/2011/0022	vdb-entry x_refsource_VUPEN
http://secunia.com/advisories/25860	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/26663	third-party-advisory x_refsource_SECUNIA
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052848.html	vendor-advisory x_refsource_FEDORA
http://secunia.com/advisories/26856	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/26272	third-party-advisory x_refsource_SECUNIA
http://security.gentoo.org/glsa/glsa-200711-34.xml	vendor-advisory x_refsource_GENTOO
http://www.redhat.com/support/errata/RHSA-2008-0146.html	vendor-advisory x_refsource_REDHAT
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052854.html	vendor-advisory x_refsource_FEDORA
http://www.securityfocus.com/bid/24651	vdb-entry x_refsource_BID
http://www.mandriva.com/security/advisories?name=MDKSA-2007:153	vendor-advisory x_refsource_MANDRIVA
http://secunia.com/advisories/26766	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/26390	third-party-advisory x_refsource_SECUNIA
ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz	x_refsource_CONFIRM
http://www.novell.com/linux/security/advisories/2007_15_sr.html	vendor-advisory x_refsource_SUSE
http://fedoranews.org/updates/FEDORA-2007-205.shtml	vendor-advisory x_refsource_FEDORA

Hyperlink: http://www.trustix.org/errata/2007/0024/

Resource:

vendor-advisory

x_refsource_TRUSTIX

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2007:164

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://secunia.com/advisories/29157

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.libgd.org/ReleaseNote020035

Resource:

x_refsource_MISC

Hyperlink: http://secunia.com/advisories/26415

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: https://issues.rpath.com/browse/RPL-1643

Resource:

x_refsource_CONFIRM

Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=277421

Resource:

x_refsource_CONFIRM

Hyperlink: http://security.gentoo.org/glsa/glsa-200805-13.xml

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9728

Resource:

vdb-entry

signature

x_refsource_OVAL

Hyperlink: http://bugs.libgd.org/?do=details&task_id=70

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.securityfocus.com/archive/1/478796/100/0/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

Hyperlink: http://secunia.com/advisories/26467

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/42813

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://security.gentoo.org/glsa/glsa-200708-05.xml

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: http://secunia.com/advisories/30168

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00311.html

Resource:

vendor-advisory

x_refsource_FEDORA

Hyperlink: http://www.vupen.com/english/advisories/2011/0022

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://secunia.com/advisories/25860

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/26663

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052848.html

Resource:

vendor-advisory

x_refsource_FEDORA

Hyperlink: http://secunia.com/advisories/26856

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/26272

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://security.gentoo.org/glsa/glsa-200711-34.xml

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0146.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052854.html

Resource:

vendor-advisory

x_refsource_FEDORA

Hyperlink: http://www.securityfocus.com/bid/24651

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2007:153

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://secunia.com/advisories/26766

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/26390

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.novell.com/linux/security/advisories/2007_15_sr.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://fedoranews.org/updates/FEDORA-2007-205.shtml

Resource:

vendor-advisory

x_refsource_FEDORA

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.trustix.org/errata/2007/0024/	vendor-advisory x_refsource_TRUSTIX x_transferred
http://www.mandriva.com/security/advisories?name=MDKSA-2007:164	vendor-advisory x_refsource_MANDRIVA x_transferred
http://secunia.com/advisories/29157	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.libgd.org/ReleaseNote020035	x_refsource_MISC x_transferred
http://secunia.com/advisories/26415	third-party-advisory x_refsource_SECUNIA x_transferred
https://issues.rpath.com/browse/RPL-1643	x_refsource_CONFIRM x_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=277421	x_refsource_CONFIRM x_transferred
http://security.gentoo.org/glsa/glsa-200805-13.xml	vendor-advisory x_refsource_GENTOO x_transferred
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9728	vdb-entry signature x_refsource_OVAL x_transferred
http://bugs.libgd.org/?do=details&task_id=70	x_refsource_CONFIRM x_transferred
http://www.securityfocus.com/archive/1/478796/100/0/threaded	mailing-list x_refsource_BUGTRAQ x_transferred
http://secunia.com/advisories/26467	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/42813	third-party-advisory x_refsource_SECUNIA x_transferred
http://security.gentoo.org/glsa/glsa-200708-05.xml	vendor-advisory x_refsource_GENTOO x_transferred
http://secunia.com/advisories/30168	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00311.html	vendor-advisory x_refsource_FEDORA x_transferred
http://www.vupen.com/english/advisories/2011/0022	vdb-entry x_refsource_VUPEN x_transferred
http://secunia.com/advisories/25860	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/26663	third-party-advisory x_refsource_SECUNIA x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052848.html	vendor-advisory x_refsource_FEDORA x_transferred
http://secunia.com/advisories/26856	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/26272	third-party-advisory x_refsource_SECUNIA x_transferred
http://security.gentoo.org/glsa/glsa-200711-34.xml	vendor-advisory x_refsource_GENTOO x_transferred
http://www.redhat.com/support/errata/RHSA-2008-0146.html	vendor-advisory x_refsource_REDHAT x_transferred
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052854.html	vendor-advisory x_refsource_FEDORA x_transferred
http://www.securityfocus.com/bid/24651	vdb-entry x_refsource_BID x_transferred
http://www.mandriva.com/security/advisories?name=MDKSA-2007:153	vendor-advisory x_refsource_MANDRIVA x_transferred
http://secunia.com/advisories/26766	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/26390	third-party-advisory x_refsource_SECUNIA x_transferred
ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz	x_refsource_CONFIRM x_transferred
http://www.novell.com/linux/security/advisories/2007_15_sr.html	vendor-advisory x_refsource_SUSE x_transferred
http://fedoranews.org/updates/FEDORA-2007-205.shtml	vendor-advisory x_refsource_FEDORA x_transferred

Hyperlink: http://www.trustix.org/errata/2007/0024/

Resource:

vendor-advisory

x_refsource_TRUSTIX

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2007:164

Resource:

vendor-advisory

x_refsource_MANDRIVA

x_transferred

Hyperlink: http://secunia.com/advisories/29157

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.libgd.org/ReleaseNote020035

Resource:

x_refsource_MISC

x_transferred

Hyperlink: http://secunia.com/advisories/26415

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: https://issues.rpath.com/browse/RPL-1643

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=277421

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://security.gentoo.org/glsa/glsa-200805-13.xml

Resource:

vendor-advisory

x_refsource_GENTOO

x_transferred

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9728

Resource:

vdb-entry

signature

x_refsource_OVAL

x_transferred

Hyperlink: http://bugs.libgd.org/?do=details&task_id=70

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.securityfocus.com/archive/1/478796/100/0/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

x_transferred

Hyperlink: http://secunia.com/advisories/26467

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/42813

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://security.gentoo.org/glsa/glsa-200708-05.xml

Resource:

vendor-advisory

x_refsource_GENTOO

x_transferred

Hyperlink: http://secunia.com/advisories/30168

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00311.html

Resource:

vendor-advisory

x_refsource_FEDORA

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2011/0022

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://secunia.com/advisories/25860

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/26663

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052848.html

Resource:

vendor-advisory

x_refsource_FEDORA

x_transferred

Hyperlink: http://secunia.com/advisories/26856

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/26272

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://security.gentoo.org/glsa/glsa-200711-34.xml

Resource:

vendor-advisory

x_refsource_GENTOO

x_transferred

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0146.html

Resource:

vendor-advisory

x_refsource_REDHAT

x_transferred

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052854.html

Resource:

vendor-advisory

x_refsource_FEDORA

x_transferred

Hyperlink: http://www.securityfocus.com/bid/24651

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2007:153

Resource:

vendor-advisory

x_refsource_MANDRIVA

x_transferred

Hyperlink: http://secunia.com/advisories/26766

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/26390

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.novell.com/linux/security/advisories/2007_15_sr.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://fedoranews.org/updates/FEDORA-2007-205.shtml

Resource:

vendor-advisory

x_refsource_FEDORA

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:cve@mitre.org

Published At:28 Jun, 2007 | 18:30

Updated At:16 Oct, 2018 | 16:49

The GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via a GIF image that has no global color map.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P

Type: Primary

Version: 2.0

Base score: 4.3

Base severity: MEDIUM

Vector:

AV:N/AC:M/Au:N/C:N/I:N/A:P

CPE Matches

gd_graphics_library>>gdlib>>Versions up to 2.0.34(inclusive)

cpe:2.3:a:gd_graphics_library:gdlib:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-Other	Primary	nvd@nist.gov

CWE ID: NVD-CWE-Other

Type: Primary

Source: nvd@nist.gov

Vendor Statements

Organization : Red Hat

Last Modified : 2007-09-05T00:00:00

Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2007-3475 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw.

References

Hyperlink	Source	Resource
ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz	cve@mitre.org	N/A
http://bugs.libgd.org/?do=details&task_id=70	cve@mitre.org	N/A
http://fedoranews.org/updates/FEDORA-2007-205.shtml	cve@mitre.org	N/A
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052848.html	cve@mitre.org	N/A
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052854.html	cve@mitre.org	N/A
http://secunia.com/advisories/25860	cve@mitre.org	N/A
http://secunia.com/advisories/26272	cve@mitre.org	N/A
http://secunia.com/advisories/26390	cve@mitre.org	N/A
http://secunia.com/advisories/26415	cve@mitre.org	N/A
http://secunia.com/advisories/26467	cve@mitre.org	N/A
http://secunia.com/advisories/26663	cve@mitre.org	N/A
http://secunia.com/advisories/26766	cve@mitre.org	N/A
http://secunia.com/advisories/26856	cve@mitre.org	N/A
http://secunia.com/advisories/29157	cve@mitre.org	N/A
http://secunia.com/advisories/30168	cve@mitre.org	N/A
http://secunia.com/advisories/42813	cve@mitre.org	N/A
http://security.gentoo.org/glsa/glsa-200708-05.xml	cve@mitre.org	N/A
http://security.gentoo.org/glsa/glsa-200711-34.xml	cve@mitre.org	N/A
http://security.gentoo.org/glsa/glsa-200805-13.xml	cve@mitre.org	N/A
http://www.libgd.org/ReleaseNote020035	cve@mitre.org	Patch
http://www.mandriva.com/security/advisories?name=MDKSA-2007:153	cve@mitre.org	N/A
http://www.mandriva.com/security/advisories?name=MDKSA-2007:164	cve@mitre.org	N/A
http://www.novell.com/linux/security/advisories/2007_15_sr.html	cve@mitre.org	N/A
http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00311.html	cve@mitre.org	N/A
http://www.redhat.com/support/errata/RHSA-2008-0146.html	cve@mitre.org	N/A
http://www.securityfocus.com/archive/1/478796/100/0/threaded	cve@mitre.org	N/A
http://www.securityfocus.com/bid/24651	cve@mitre.org	N/A
http://www.trustix.org/errata/2007/0024/	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2011/0022	cve@mitre.org	N/A
https://bugzilla.redhat.com/show_bug.cgi?id=277421	cve@mitre.org	N/A
https://issues.rpath.com/browse/RPL-1643	cve@mitre.org	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9728	cve@mitre.org	N/A

Hyperlink: ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://bugs.libgd.org/?do=details&task_id=70

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://fedoranews.org/updates/FEDORA-2007-205.shtml

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052848.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052854.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/25860

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/26272

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/26390

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/26415

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/26467

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/26663

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/26766

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/26856

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/29157

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/30168

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/42813

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://security.gentoo.org/glsa/glsa-200708-05.xml

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://security.gentoo.org/glsa/glsa-200711-34.xml

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://security.gentoo.org/glsa/glsa-200805-13.xml

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.libgd.org/ReleaseNote020035

Source: cve@mitre.org

Resource:

Patch

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2007:153

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2007:164

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.novell.com/linux/security/advisories/2007_15_sr.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00311.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0146.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.securityfocus.com/archive/1/478796/100/0/threaded

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.securityfocus.com/bid/24651

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.trustix.org/errata/2007/0024/

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.vupen.com/english/advisories/2011/0022

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=277421

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://issues.rpath.com/browse/RPL-1643

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9728

Source: cve@mitre.org

Resource: N/A

Similar CVEs

2Records found

CVE-2007-3478

Matching Score-8

Assigner-MITRE Corporation

View Details

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-4.3||MEDIUM

EPSS-11.82% / 93.45%

7 Day CHG~0.00%

Published-28 Jun, 2007 | 18:00

Updated-07 Aug, 2024 | 14:21

Race condition in gdImageStringFTEx (gdft_draw_bitmap) in gdft.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors, possibly involving truetype font (TTF) support.

Vendor-gd_graphics_library n/a

Product-gdlib n/a

CWE ID-CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

CVE-2007-3476

Matching Score-8

Assigner-MITRE Corporation

View Details

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-4.3||MEDIUM

EPSS-5.18% / 89.52%

7 Day CHG~0.00%

Published-28 Jun, 2007 | 18:00

Updated-07 Aug, 2024 | 14:21

Array index error in gd_gif_in.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash and heap corruption) via large color index values in crafted image data, which results in a segmentation fault.

Vendor-gd_graphics_library n/a

Product-gdlib n/a

CWE ID-CWE-189

Not Available

CVE-2007-3475

Credits

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs