First published: Fri Nov 19 2004(Updated: )
Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function, a different set of vulnerabilities than CVE-2004-0990.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
GD Graphics Library (gdlib) | =2.0.33 | |
GD Graphics Library (gdlib) | =2.0.26 | |
GD Graphics Library (gdlib) | =2.0.22 | |
GD Graphics Library (gdlib) | =2.0.23 | |
GD Graphics Library (gdlib) | =2.0.27 | |
GD Graphics Library (gdlib) | =2.0.20 | |
GD Graphics Library (gdlib) | =1.8.4 | |
GD Graphics Library (gdlib) | =2.0.1 | |
GD Graphics Library (gdlib) | =2.0.21 | |
GD Graphics Library (gdlib) | =2.0.28 | |
Trustix Secure Linux | =2.0 | |
Trustix Secure Linux | =1.5 | |
Trustix Secure Linux | =2.1 | |
Trustix Secure Linux | =2.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2004-0941 is considered to have a high severity as it allows remote attackers to execute arbitrary code.
To fix CVE-2004-0941, update the GD graphics library to version 2.0.34 or later.
CVE-2004-0941 affects multiple versions of GD graphics library, including 2.0.21 and earlier.
CVE-2004-0941 is classified as a buffer overflow vulnerability.
CVE-2004-0941 can be exploited by unauthenticated remote attackers through specially crafted image files.