CVE-2007-3475
Summary
| CVE | CVE-2007-3475 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2007-06-28 18:30:00 UTC |
| Updated | 2018-10-16 16:49:00 UTC |
| Description | The GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via a GIF image that has no global color map. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Gd Graphics Library | Gdlib | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Slackware update for gd - Advisories - Secunia | SECUNIA | secunia.com | |
| ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-... | CONFIRM | ftp.slackware.com | |
| FS#70: possible crash when no global color map has been found | CONFIRM | bugs.libgd.org | |
| ReleaseNote020035 - LibGD | MISC | www.libgd.org | Patch |
| Repository / Oval Repository | OVAL | oval.cisecurity.org | |
| GD: Multiple vulnerabilities — Gentoo Linux Documentation | GENTOO | security.gentoo.org | |
| Gentoo update for gd - Advisories - Secunia | SECUNIA | secunia.com | |
| Fedora update for libwmf - Advisories - Community | SECUNIA | secunia.com | |
| issues.rpath.com/browse/RPL-1643 | CONFIRM | issues.rpath.com | |
| PTeX: Multiple vulnerabilities — Gentoo Linux Documentation | GENTOO | security.gentoo.org | |
| Gentoo Linux Documentation -- CSTeX: Multiple vulnerabilities | GENTOO | security.gentoo.org | |
| Gentoo update for ptex - Advisories - Secunia | SECUNIA | secunia.com | |
| [SECURITY] Fedora 14 Update: libwmf-0.2.8.4-27.fc14 | FEDORA | lists.fedoraproject.org | |
| Red Hat update for gd - Advisories - Secunia | SECUNIA | secunia.com | |
| Trustix Update for Multiple Packages - Advisories - Secunia | SECUNIA | secunia.com | |
| Fedora update for gd - Advisories - Secunia | SECUNIA | secunia.com | |
| GD Graphics Library Multiple Vulnerabilities | BID | www.securityfocus.com | |
| [SECURITY] Fedora Core 6 Update: gd-2.0.35-1.fc6 | FEDORA | www.redhat.com | |
| Security Announcement | SUSE | www.novell.com | |
| Support | REDHAT | www.redhat.com | |
| SecurityFocus | BUGTRAQ | www.securityfocus.com | |
| Mandriva update for tetex - Advisories - Secunia | SECUNIA | secunia.com | |
| Advisories | Mandriva | MANDRIVA | www.mandriva.com | |
| rPath Update for gd and Multiple php Packages - Advisories - Secunia | SECUNIA | secunia.com | |
| Bug 277421 – CVE-2007-3472 CVE-2007-3473 CVE-2007-3474 CVE-2007-3475 CVE-2007-3476 CVE-2007-3477 CVE-2007-3478 gd various flaws [FC6] | CONFIRM | bugzilla.redhat.com | |
| Advisories | Mandriva | MANDRIVA | www.mandriva.com | |
| Fedora update for gd - Advisories - Secunia | SECUNIA | secunia.com | |
| 404 Not Found | FEDORA | fedoranews.org | |
| Webmail - OVH | VUPEN | www.vupen.com | |
| Mandriva update for gd - Advisories - Secunia | SECUNIA | secunia.com | |
| [SECURITY] Fedora 13 Update: libwmf-0.2.8.4-22.fc13 | FEDORA | lists.fedoraproject.org | |
| 2007-0024 | TRUSTIX | www.trustix.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
| Organization | Published | Contributor | Statement |
|---|---|---|---|
| Red Hat | 2007-09-05 | Mark J Cox | Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2007-3475 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. |
There are currently no legacy QID mappings associated with this CVE.