NVD

Id
54920  
Name
CVE-2007-2756  
Description
The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-07  
Published
2007-05-18  
Modified Date
2012-11-05  
Seq
2007-2756  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
278734 54920 CVE-2007-2756 http://bugs.libgd.org/?do=details&task_id=86  View
278735 54920 CVE-2007-2756 HPSBUX02262  View
278736 54920 CVE-2007-2756 SUSE-SA:2007:044  View
278737 54920 CVE-2007-2756 oval:org.mitre.oval:def:10779  View
278738 54920 CVE-2007-2756 RHSA-2007:0889  View
278739 54920 CVE-2007-2756 GLSA-200708-05  View
278740 54920 CVE-2007-2756 GLSA-200711-34  View
278741 54920 CVE-2007-2756 GLSA-200805-13  View
278742 54920 CVE-2007-2756 SSA:2007-152-01  View
278743 54920 CVE-2007-2756 http://support.avaya.com/elmodocs2/security/ASA-2007-449.htm  View
278744 54920 CVE-2007-2756 GLSA-200710-02  View
278745 54920 CVE-2007-2756 http://www.libgd.org/ReleaseNote020035  View
278746 54920 CVE-2007-2756 MDKSA-2007:122  View
278747 54920 CVE-2007-2756 MDKSA-2007:123  View
278748 54920 CVE-2007-2756 MDKSA-2007:124  View
278749 54920 CVE-2007-2756 MDKSA-2007:187  View
278750 54920 CVE-2007-2756 SUSE-SR:2007:013  View
278751 54920 CVE-2007-2756 OpenPKG-SA-2007.020  View
278752 54920 CVE-2007-2756 http://www.php.net/releases/5_2_3.php  View
278753 54920 CVE-2007-2756 RHSA-2007:0890  View
278754 54920 CVE-2007-2756 RHSA-2007:0891  View
278755 54920 CVE-2007-2756 RHSA-2008:0146  View
278756 54920 CVE-2007-2756 24089  View
278757 54920 CVE-2007-2756 1018187  View
278758 54920 CVE-2007-2756 2007-0019  View
278759 54920 CVE-2007-2756 2007-0023  View
278760 54920 CVE-2007-2756 USN-473-1  View
278761 54920 CVE-2007-2756 ADV-2007-1904  View
278762 54920 CVE-2007-2756 ADV-2007-1905  View
278763 54920 CVE-2007-2756 ADV-2007-2016  View
278764 54920 CVE-2007-2756 ADV-2007-2336  View
278765 54920 CVE-2007-2756 ADV-2007-3386  View
278766 54920 CVE-2007-2756 gd-gdpngreaddata-dos(34420)  View
278767 54920 CVE-2007-2756 https://issues.rpath.com/browse/RPL-1394  View
278768 54920 CVE-2007-2756 FEDORA-2007-709  View
278769 54920 CVE-2007-2756 FEDORA-2007-2215  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
51759 JVNDB-2007-000422 GD ライブラリの gdPngReadData() 関数におけるサービス運用妨害 (DoS) の脆弱性 GD ライブラリの gdPngReadData() 関数には不正な PNG イメージファイルを処理した際に、png_read_info() 関数内で無限ループが発生しサービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2007-2756 26111 CVE-2007-2756 54920 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000422.html 2007-05-18 2008-04-15 View