FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-3477

This CVE name corresponds to:

Entered Topic
2015-07-15 libwmf -- multiple vulnerabilities
2007-06-29 gd -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2007-3477 at cve.mitre.org

Details

Type Candidate
Name CVE-2007-3477
Phase Assigned(20070628)

Description

The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd) before 2.0.35 allow attackers to cause a denial of service (CPU consumption) via a large (1) start or (2) end angle degree value.

References

Source Reference
BUGTRAQ 20070907 FLEA-2007-0052-1 gd
MISC http://www.libgd.org/ReleaseNote020035
CONFIRM http://bugs.libgd.org/?do=details&task_id=74
CONFIRM http://bugs.libgd.org/?do=details&task_id=92
CONFIRM ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz
CONFIRM https://issues.rpath.com/browse/RPL-1643
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=277421
DEBIAN DSA-1613
FEDORA FEDORA-2007-2055
FEDORA FEDORA-2007-692
FEDORA FEDORA-2010-19022
FEDORA FEDORA-2010-19033
GENTOO GLSA-200708-05
GENTOO GLSA-200711-34
GENTOO GLSA-200805-13
MANDRIVA MDKSA-2007:153
MANDRIVA MDKSA-2007:164
SUSE SUSE-SR:2007:015
TRUSTIX 2007-0024
BID 24651
OSVDB 42062
SECUNIA 25860
SECUNIA 26272
SECUNIA 26390
SECUNIA 26415
SECUNIA 26467
SECUNIA 26663
SECUNIA 26766
SECUNIA 26856
SECUNIA 30168
SECUNIA 31168
SECUNIA 42813
VUPEN ADV-2011-0022

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.