CVE-2018-1000222Double Free in Libgd

CWE-415Double FreeCWE-416Use After Free14 documents8 sources
Severity
8.8HIGHNVD
EPSS
0.9%
top 24.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Canonical Ubuntu LinuxDebian LinuxLibgd
Timeline
PublishedAug 20
Latest updateMay 13

Description

Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Code Execution . This attack appear to be exploitable via Specially Crafted Jpeg Image can trigger double free. This vulnerability appears to have been fixed in after commit ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

NVDlibgd/libgd2.2.5

Also affects: Debian Linux 8.0, Ubuntu Linux 14.04, 16.04, 18.04

🔴Vulnerability Details

4
GHSA
GHSA-jcj9-h5mg-pr5c: Libgd version 22022-05-13
OSV
libgd2 vulnerabilities2018-08-27
CVEList
CVE-2018-1000222: Libgd version 22018-08-20
OSV
CVE-2018-1000222: Libgd version 22018-08-20

📋Vendor Advisories

3
Ubuntu
GD vulnerabilities2018-08-27
Red Hat
gd: Double free in src/gd_bump.c:gdImageBmpPtr() via crafted JPEG2018-07-15
Debian
CVE-2018-1000222: libgd2 - Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImag...2018

💬Community

6
Bugzilla
CVE-2018-1000222 libwmf: gd: Double free in src/gd_bump.c:gdImageBmpPtr() via crafted JPEG [fedora-all]2018-08-24
Bugzilla
CVE-2018-1000222 gd: Double free in src/gd_bump.c:gdImageBmpPtr() via crafted JPEG [fedora-all]2018-08-24
Bugzilla
CVE-2018-1000222 libwmf: gd: Double free in src/gd_bump.c:gdImageBmpPtr() via crafted JPEG [fedora-all]2018-08-24
Bugzilla
CVE-2018-1000222 gd: Double free in src/gd_bump.c:gdImageBmpPtr() via crafted JPEG2018-08-24
Bugzilla
CVE-2018-1000222 gd: Double free in src/gd_bump.c:gdImageBmpPtr() via crafted JPEG [fedora-all]2018-08-24