gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated by a call to the imagecreatefromgif or imagecreatefromstring PHP function. This is related to GetCode_ and gdImageCreateFromGifCtx.
References
Link | Resource |
---|---|
http://php.net/ChangeLog-5.php | Release Notes Vendor Advisory |
http://php.net/ChangeLog-7.php | Release Notes Vendor Advisory |
https://access.redhat.com/errata/RHSA-2018:1296 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2019:2519 | |
https://bugs.php.net/bug.php?id=75571 | Patch Vendor Advisory |
https://lists.debian.org/debian-lts-announce/2018/01/msg00022.html | Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2019/01/msg00028.html | Third Party Advisory |
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/ | |
https://security.gentoo.org/glsa/201903-18 | Third Party Advisory |
https://usn.ubuntu.com/3755-1/ | Third Party Advisory |
https://www.oracle.com/security-alerts/cpuapr2020.html |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-01-16T09:00:00
Updated: 2020-04-15T21:06:47
Reserved: 2018-01-16T00:00:00
Link: CVE-2018-5711
JSON object: View
NVD Information
Status : Modified
Published: 2018-01-16T09:29:00.577
Modified: 2023-11-07T02:58:49.180
Link: CVE-2018-5711
JSON object: View
Redhat Information
No data.