Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 194520 - CVE-2006-2906 gd denial of service
CVE-2006-2906 gd denial of service
Status: CLOSED RAWHIDE
Product: Fedora
Classification: Fedora
Component: gd (Show other bugs)
5
All Linux
medium Severity low
: ---
: ---
Assigned To: Radek Vokal
impact=low,source=bugtraq,reported=20...
: Security
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2006-06-08 14:00 EDT by Josh Bressers
Modified: 2007-11-30 17:11 EST (History)
0 users

See Also:
Fixed In Version: 2.0.33-9
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2006-07-11 04:09:25 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Testcase based on the C in the bugtraq mail. (9.51 KB, application/x-gzip)
2006-06-08 14:03 EDT, Josh Bressers 		no flags Details
Add an attachment (proposed patch, testcase, etc.)

  None (edit)
Description Josh Bressers 2006-06-08 14:00:21 EDT 
gd denial of service

A flaw was found in the way gd loads certain malformed GIF images.  If
a user loads a broken GIF image it is possible to cause gd to enter an
infinite loop.

There is more information in the bugtraq mail:
http://www.securityfocus.com/archive/1/436132


This issue also affects FC4
Comment 1 Josh Bressers 2006-06-08 14:03:25 EDT 
Created attachment 130771 [details]
Testcase based on the C in the bugtraq mail.

This testcase doesn't seem to crash when loading a gif image via a file stream,
but does when the data is loaded via a pointer.
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.