[3.4] gd: Multiple vulnerabilities (CVE-2017-6362, CVE-2017-7890)
CVE-2017-6362: Double-free in gdImagePngPtr().
Double free vulnerability in the gdImagePngPtr function in libgd2 before
2.2.5 allows remote attackers
to cause a denial of service via vectors related to a palette with no
colors.
Fixed In Version:
libgd 2.2.5
References:
https://libgd.github.io/category/news.html
Patch:
https://github.com/libgd/libgd/commit/56ce6ef068b954ad28379e83cca04feefc51320c
CVE-2017-7890: Buffer over-read into uninitialized memory.
Fixed In Version:
libgd 2.2.5
References:
https://libgd.github.io/category/news.html
https://github.com/libgd/libgd/issues/399
Patch:
https://github.com/libgd/libgd/commit/c613bc169802bb4b639ee2e15c61b25b80a88424
(from redmine: issue id 8331, created on 2017-12-20, closed on 2017-12-28)
- Relations:
- parent #8328 (closed)
- Changesets:
- Revision c77ede20 on 2017-12-28T10:22:26Z:
main/gd: security upgrade to 2.2.5 (CVE-2017-6362, CVE-2017-7890)
Fixes #8331