Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
gdImageColorMatch in gd_color_match.c in the GD Graphics Library (aka LibGD) 2.2.5, as used in the imagecolormatch function in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1, has a heap-based buffer overflow. This can be exploited by an attacker who is able to trigger imagecolormatch calls with crafted image data.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GD Graphics Library 缓冲区错误漏洞
Vulnerability Description
GD Graphics Library(libgd或libgd2)是美国Thomas Boutell软件开发者的一个开源的用于动态创建图像的库。该产品支持创建图表、图形和缩略图等。 GD Graphics Library 2.2.5版本中的gd_color_match.c文件的‘gdImageColorMatch’函数存在基于堆的缓冲区溢出漏洞。攻击者可利用该漏洞执行代码或造成拒绝服务。以下产品和版本受到影响:PHP 5.6.40之前的版本,7.1.26之前的7.x版本,7.2.14之前的7.2.x版本,
CVSS Information
N/A
Vulnerability Type
N/A