2015-03-30 12:59:05 2019-10-10 01:12:35

The GetCode_ function in gd_gif_in.c in GD 2.1.1 and earlier, as used in PHP before 5.5.21 and 5.6.x before 5.6.5, allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted GIF image that is improperly handled by the gdImageCreateFromGif function.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL
PHP 5.5.0 beta1 PHP 5.5.0 alpha6 PHP 5.5.0 alpha3 PHP 5.5.0 alpha4 PHP 5.5.0 alpha5 PHP 5.5.0 alpha2 PHP 5.5.0 alpha1 PHP 5.5.0 Php Php 5.5.0 - (not an official CPE) libgd libgd 2.1.1 PHP 5.5.0 beta2 PHP 5.5.0 beta3 PHP 5.5.0 beta4 PHP 5.5.0 release candidate 1 PHP 5.5.0 release candidate 2 Php Php 5.5.0 Rc3 (not an official CPE) PHP 5.5.1 PHP 5.5.2 Php Php 5.5.2 - (not an official CPE) Php Php 5.5.2 Rc1 (not an official CPE) PHP 5.5.3 PHP 5.5.4 Php Php 5.5.4 - (not an official CPE) Php Php 5.5.4 Rc1 (not an official CPE) PHP 5.5.5 Php Php 5.5.5 - (not an official CPE) Php Php 5.5.5 Rc1 (not an official CPE) PHP 5.5.6 Php Php 5.5.6 - (not an official CPE) Php Php 5.5.6 Rc1 (not an official CPE) PHP 5.5.7 Php Php 5.5.7 - (not an official CPE) Php Php 5.5.7 Rc1 (not an official CPE) PHP 5.5.8 Php Php 5.5.8 - (not an official CPE) Php Php 5.5.8 Rc1 (not an official CPE) PHP 5.5.9 Php Php 5.5.9 - (not an official CPE) Php Php 5.5.9 Rc1 (not an official CPE) PHP 5.5.10 Php Php 5.5.10 - (not an official CPE) Php Php 5.5.10 Rc1 (not an official CPE) PHP 5.5.11 Php Php 5.5.11 - (not an official CPE) Php Php 5.5.11 Rc1 (not an official CPE) PHP 5.5.12 Php Php 5.5.12 - (not an official CPE) Php Php 5.5.12 Rc1 (not an official CPE) PHP 5.5.13 Php Php 5.5.13 - (not an official CPE) Php Php 5.5.13 Rc1 (not an official CPE) PHP 5.5.14 Php Php 5.5.14 - (not an official CPE) Php Php 5.5.14 Rc1 (not an official CPE) Php Php 5.5.15 (not an official CPE) Php Php 5.5.15 - (not an official CPE) Php Php 5.5.15 Rc1 (not an official CPE) Php Php 5.5.16 (not an official CPE) Php Php 5.5.16 - (not an official CPE) Php Php 5.5.16 Rc1 (not an official CPE) Php Php 5.5.17 (not an official CPE) Php Php 5.5.17 - (not an official CPE) Php Php 5.5.17 Rc1 (not an official CPE) PHP 5.5.18 Php Php 5.5.18 - (not an official CPE) Php Php 5.5.18 Rc1 (not an official CPE) PHP 5.5.19 Php Php 5.5.19 - (not an official CPE) Php Php 5.5.19 Rc1 (not an official CPE) PHP 5.5.20 Php Php 5.5.20 - (not an official CPE) Php Php 5.5.20 Rc1 (not an official CPE) Php Php 5.6.0 (not an official CPE) Php Php 5.6.0 - (not an official CPE) PHP 5.6.0 alpha1 PHP 5.6.0 alpha2 PHP 5.6.0 alpha3 PHP 5.6.0 alpha4 PHP 5.6.0 alpha5 PHP 5.6.0 beta1 PHP 5.6.0 beta2 PHP 5.6.0 beta3 PHP 5.6.0 beta4 Php Php 5.6.0 Rc1 (not an official CPE) Php Php 5.6.0 Rc2 (not an official CPE) Php Php 5.6.0 Rc3 (not an official CPE) Php Php 5.6.0 Rc4 (not an official CPE) Php Php 5.6.1 (not an official CPE) Php Php 5.6.1 - (not an official CPE) Php Php 5.6.1 Rc1 (not an official CPE) PHP 5.6.2 PHP 5.6.3 Php Php 5.6.3 - (not an official CPE) Php Php 5.6.3 Rc1 (not an official CPE) PHP 5.6.4 Php Php 5.6.4 - (not an official CPE) Php Php 5.6.4 Rc1 (not an official CPE)