CVE-2004-0941: Buffer Overflow
First published: Fri Nov 19 2004(Updated: )
Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function, a different set of vulnerabilities than CVE-2004-0990.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Gd Graphics Library Gdlib | =2.0.33 | |
| Gd Graphics Library Gdlib | =2.0.26 | |
| Gd Graphics Library Gdlib | =2.0.22 | |
| Gd Graphics Library Gdlib | =2.0.23 | |
| Gd Graphics Library Gdlib | =2.0.27 | |
| Gd Graphics Library Gdlib | =2.0.20 | |
| Gd Graphics Library Gdlib | =1.8.4 | |
| Gd Graphics Library Gdlib | =2.0.1 | |
| Gd Graphics Library Gdlib | =2.0.21 | |
| Gd Graphics Library Gdlib | =2.0.28 | |
| Trustix Secure Linux | =2.0 | |
| Trustix Secure Linux | =1.5 | |
| Trustix Secure Linux | =2.1 | |
| Trustix Secure Linux | =2.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.trustix.org/errata/2004/0058
- http://www.securityfocus.com/bid/11663
- http://secunia.com/advisories/13179/
- http://www.redhat.com/support/errata/RHSA-2006-0194.html
- http://secunia.com/advisories/18686
- http://secunia.com/advisories/20824
- http://secunia.com/advisories/21050
- http://www.debian.org/security/2004/dsa-601
- http://www.redhat.com/support/errata/RHSA-2004-638.html
- http://www.ciac.org/ciac/bulletins/p-071.shtml
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:113
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:114
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:122
- https://www.ubuntu.com/usn/usn-33-1/
- https://www.ubuntu.com/usn/usn-25-1/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18048
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1195
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11176
- collector/nvd-historical
- collector/nvd-index
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/gd graphics library
- canonical/gd graphics library gdlib
- version/gd graphics library gdlib/2.0.33
- version/gd graphics library gdlib/2.0.26
- version/gd graphics library gdlib/2.0.22
- version/gd graphics library gdlib/2.0.23
- version/gd graphics library gdlib/2.0.27
- version/gd graphics library gdlib/2.0.20
- version/gd graphics library gdlib/1.8.4
- version/gd graphics library gdlib/2.0.1
- version/gd graphics library gdlib/2.0.21
- version/gd graphics library gdlib/2.0.28
- vendor/trustix
- canonical/trustix secure linux
- version/trustix secure linux/2.0
- version/trustix secure linux/1.5
- version/trustix secure linux/2.1
- version/trustix secure linux/2.2