Wind River Support Network

HomeDefectsLIN7-28
Fixed

LIN7-28 : Security Advisory - php - CVE-2013-7226

Created: May 11, 2014    Updated: Mar 31, 2016
Resolved Date: Jun 15, 2014
Found In Version: Invalid Version
Fix Version: 7.0
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

Integer overflow in the gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an imagecrop function call with a large x dimension value, leading to a heap-based buffer overflow.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-7226
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube