Bug 242033 - (CVE-2007-2756) CVE-2007-2756 gd / php-gd ImageCreateFromPng infinite loop caused by truncated PNG
CVE-2007-2756 gd / php-gd ImageCreateFromPng infinite loop caused by truncate...
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
All Linux
low Severity low
: ---
: ---
Assigned To: Red Hat Product Security
: Reopened, Security
Depends On: 278361 278381 278391 278401 278411 278421 432784 432786 432787 833899
  Show dependency treegraph
Reported: 2007-06-01 08:36 EDT by Joe Orton
Modified: 2016-03-04 06:43 EST (History)
2 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2015-02-17 10:13:48 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2007:0889 normal SHIPPED_LIVE Moderate: php security update 2007-09-26 04:34:27 EDT
Red Hat Product Errata RHSA-2007:0890 normal SHIPPED_LIVE Moderate: php security update 2008-01-07 18:52:21 EST
Red Hat Product Errata RHSA-2007:0891 normal SHIPPED_LIVE Moderate: php security update 2007-10-25 13:33:16 EDT
Red Hat Product Errata RHSA-2008:0146 normal SHIPPED_LIVE Moderate: gd security update 2008-02-28 04:59:17 EST

  None (edit)
Description Joe Orton 2007-06-01 08:36:29 EDT
Description of problem:
PHP 5.2.3 release: http://www.php.net/releases/5_2_3.php

Fixed possible infinite loop in imagecreatefrompng. (by Xavier Roche, CVE-2007-2756)
Comment 7 Red Hat Product Security 2008-01-16 09:06:34 EST
This issue was addressed in:

Red Hat Application Stack:

Red Hat Enterprise Linux:

  updated to fixed upstream version

Comment 8 Tomas Hoger 2008-02-13 11:45:39 EST
Comment #7 describes Errata where this issue was fixed in gd library embedded in
php source code.  This issue also affects gd packages as shipped in Red Hat
Enterprise Linux 2.1, 3, 4, and 5.

Similar commit as mentioned in comment #4, but in libgd CVS repository:

Comment 13 Tomas Hoger 2008-02-28 05:50:32 EST
Updated gd packages addressing this issue were released for Red Hat Enterprise
Linux 4 and 5:

Comment 14 Vincent Danen 2015-02-17 10:13:48 EST

Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates for libwmf in Red Hat Enterprise Linux 5 and 6. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.

Note You need to log in before you can comment on or make changes to this bug.