Vulnerabilities > Libgd
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-05-22 | CVE-2015-8877 | Resource Management Errors vulnerability in multiple products The gdImageScaleTwoPass function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.2.0, as used in PHP before 5.6.12, uses inconsistent allocate and free approaches, which allows remote attackers to cause a denial of service (memory consumption) via a crafted call, as demonstrated by a call to the PHP imagescale function. | 5.0 |
| 2016-04-26 | CVE-2016-3074 | Incorrect Conversion between Numeric Types vulnerability in multiple products Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflow. | 7.5 |
| 2007-06-28 | CVE-2007-3477 | Resource Management Errors vulnerability in Libgd GD Graphics Library 2.0.33/2.0.34/2.0.35 The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd) before 2.0.35 allow attackers to cause a denial of service (CPU consumption) via a large (1) start or (2) end angle degree value. | 5.0 |
| 2007-06-28 | CVE-2007-3474 | Multiple vulnerability in Libgd GD Graphics Library 2.0.33/2.0.34/2.0.35 Multiple unspecified vulnerabilities in the GIF reader in the GD Graphics Library (libgd) before 2.0.35 have unspecified impact and user-assisted remote attack vectors. | 2.6 |
| 2007-06-28 | CVE-2007-3473 | Multiple vulnerability in GD Graphics Library The gdImageCreateXbm function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors involving a gdImageCreate failure. network libgd | 4.3 |
| 2007-06-28 | CVE-2007-3472 | Numeric Errors vulnerability in Libgd GD Graphics Library 2.0.33/2.0.34/2.0.35 Integer overflow in gdImageCreateTrueColor function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to have unspecified attack vectors and impact. | 4.3 |
| 2007-05-18 | CVE-2007-2756 | Denial of Service vulnerability in Libgd 2.0.34 The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng. network libgd | 4.3 |