CVE-2007-2756
published 2007-05-18CVE-2007-2756: The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated…
PriorityP417medium4.3CVSS 2.0
AVNACMAuNCNINAP
EPSS
4.27%
89.8th percentile
The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libgd2 | < libgd2 2.0.35.dfsg-1 (bookworm) | libgd2 2.0.35.dfsg-1 (bookworm) |
| libgd | libgd | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM
vendor_ubuntu7.5HIGH
vendor_debian4.3LOW
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
libgd2 vulnerabilities
vendor_ubuntu·2007-06-12·CVSS 7.5
CVE-2007-0455 [HIGH] libgd2 vulnerabilities
Title: libgd2 vulnerabilities
Summary: libgd2 vulnerabilities
A buffer overflow was discovered in libgd2's font renderer. By tricking
an application using libgd2 into rendering a specially crafted string
with a JIS encoded font, a remote attacker could read heap memory or
crash the application, leading to a denial of service. (CVE-2007-0455)
Xavier Roche discovered that libgd2 did not correctly validate PNG
callback results. If an application were tricked into processing a
specially crafted PNG image, it would monopolize CPU resources. Since
libgd2 is often used in PHP and Perl web applications, this could lead
to a remote denial of service. (CVE-2007-2756)
Instructions: After a standard system upgrade you need to reboot your computer to
effect the necessary changes.
Red Hat
gd / php-gd ImageCreateFromPng infinite loop caused by truncated PNG
vendor_redhat·2007-05-16·CVSS 4.3
CVE-2007-2756 [MEDIUM] CWE-835 gd / php-gd ImageCreateFromPng infinite loop caused by truncated PNG
gd / php-gd ImageCreateFromPng infinite loop caused by truncated PNG
The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.
Statement: Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates for libwmf in Red Hat Enterprise Linux 5 and 6. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Package: libwmf (Red Hat Enterprise Linux 4) - Will not fix
Package: libwmf (Red Hat Enterprise Linux 5) - Will not fix
Package: libwmf (Red Hat Enterp
Debian
CVE-2007-2756: libgd2 - The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cau...
vendor_debian·2007·CVSS 4.3
CVE-2007-2756 [MEDIUM] CVE-2007-2756: libgd2 - The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cau...
The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.
Scope: local
bookworm: resolved (fixed in 2.0.35.dfsg-1)
bullseye: resolved (fixed in 2.0.35.dfsg-1)
forky: resolved (fixed in 2.0.35.dfsg-1)
sid: resolved (fixed in 2.0.35.dfsg-1)
trixie: resolved (fixed in 2.0.35.dfsg-1)
GHSA
GHSA-2rm4-pxv9-x75c: The gdPngReadData function in libgd 2
ghsa_unreviewed·2022-05-01
CVE-2007-2756 [MEDIUM] GHSA-2rm4-pxv9-x75c: The gdPngReadData function in libgd 2
The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.
OSV
CVE-2007-2756: The gdPngReadData function in libgd 2
osv·2007-05-18·CVSS 4.3
CVE-2007-2756 [MEDIUM] CVE-2007-2756: The gdPngReadData function in libgd 2
The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.
No detection rules found.
No public exploits indexed.
http://bugs.libgd.org/?do=details&task_id=86http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.htmlhttp://osvdb.org/35788http://osvdb.org/36643http://rhn.redhat.com/errata/RHSA-2007-0889.htmlhttp://secunia.com/advisories/25353http://secunia.com/advisories/25362http://secunia.com/advisories/25378http://secunia.com/advisories/25535http://secunia.com/advisories/25575http://secunia.com/advisories/25590http://secunia.com/advisories/25646http://secunia.com/advisories/25657http://secunia.com/advisories/25658http://secunia.com/advisories/25787http://secunia.com/advisories/25855http://secunia.com/advisories/26048http://secunia.com/advisories/26231http://secunia.com/advisories/26390http://secunia.com/advisories/26871http://secunia.com/advisories/26895http://secunia.com/advisories/26930http://secunia.com/advisories/26967http://secunia.com/advisories/27037http://secunia.com/advisories/27102http://secunia.com/advisories/27110http://secunia.com/advisories/27545http://secunia.com/advisories/29157http://secunia.com/advisories/30168http://security.gentoo.org/glsa/glsa-200708-05.xmlhttp://security.gentoo.org/glsa/glsa-200711-34.xmlhttp://security.gentoo.org/glsa/glsa-200805-13.xmlhttp://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.482863http://support.avaya.com/elmodocs2/security/ASA-2007-449.htmhttp://www.gentoo.org/security/en/glsa/glsa-200710-02.xmlhttp://www.libgd.org/ReleaseNote020035http://www.mandriva.com/security/advisories?name=MDKSA-2007:122http://www.mandriva.com/security/advisories?name=MDKSA-2007:123http://www.mandriva.com/security/advisories?name=MDKSA-2007:124http://www.mandriva.com/security/advisories?name=MDKSA-2007:187http://www.novell.com/linux/security/advisories/2007_13_sr.htmlhttp://www.openpkg.com/security/advisories/OpenPKG-SA-2007.020.htmlhttp://www.php.net/releases/5_2_3.phphttp://www.redhat.com/support/errata/RHSA-2007-0890.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0891.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0146.htmlhttp://www.securityfocus.com/bid/24089http://www.securitytracker.com/id?1018187http://www.trustix.org/errata/2007/0019/http://www.trustix.org/errata/2007/0023/http://www.ubuntu.com/usn/usn-473-1http://www.vupen.com/english/advisories/2007/1904http://www.vupen.com/english/advisories/2007/1905http://www.vupen.com/english/advisories/2007/2016http://www.vupen.com/english/advisories/2007/2336http://www.vupen.com/english/advisories/2007/3386https://exchange.xforce.ibmcloud.com/vulnerabilities/34420https://issues.rpath.com/browse/RPL-1394https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10779https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00354.htmlhttps://www.redhat.com/archives/fedora-package-announce/2007-September/msg00397.htmlhttp://bugs.libgd.org/?do=details&task_id=86http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.htmlhttp://osvdb.org/35788http://osvdb.org/36643http://rhn.redhat.com/errata/RHSA-2007-0889.htmlhttp://secunia.com/advisories/25353http://secunia.com/advisories/25362http://secunia.com/advisories/25378http://secunia.com/advisories/25535http://secunia.com/advisories/25575http://secunia.com/advisories/25590http://secunia.com/advisories/25646http://secunia.com/advisories/25657http://secunia.com/advisories/25658http://secunia.com/advisories/25787http://secunia.com/advisories/25855http://secunia.com/advisories/26048http://secunia.com/advisories/26231http://secunia.com/advisories/26390http://secunia.com/advisories/26871http://secunia.com/advisories/26895http://secunia.com/advisories/26930http://secunia.com/advisories/26967http://secunia.com/advisories/27037http://secunia.com/advisories/27102http://secunia.com/advisories/27110http://secunia.com/advisories/27545http://secunia.com/advisories/29157http://secunia.com/advisories/30168http://security.gentoo.org/glsa/glsa-200708-05.xmlhttp://security.gentoo.org/glsa/glsa-200711-34.xmlhttp://security.gentoo.org/glsa/glsa-200805-13.xmlhttp://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.482863http://support.avaya.com/elmodocs2/security/ASA-2007-449.htmhttp://www.gentoo.org/security/en/glsa/glsa-200710-02.xmlhttp://www.libgd.org/ReleaseNote020035http://www.mandriva.com/security/advisories?name=MDKSA-2007:122
+ 24 more references
2007-05-18
Published