godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2025-12-31 09:48:56 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
2020.02.x
buildroot/package/gd
History
Fabrice Fontaine b70686422d package/gd: fix CVE-2018-14553 and CVE-2019-6977 
- Fix CVE-2018-14553 : gdImageClone in gd.c in libgd 2.1.0-rc2 through
  2.2.5 has a NULL pointer dereference allowing attackers to crash an
  application via a specific function call sequence.

- Fix CVE-2019-6977: gdImageColorMatch in gd_color_match.c in the GD
  Graphics Library (aka LibGD) 2.2.5, as used in the imagecolormatch
  function in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14,
  and 7.3.x before 7.3.1, has a heap-based buffer overflow. This can be
  exploited by an attacker who is able to trigger imagecolormatch calls
  with crafted image data.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 6fa1a32dac)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2020-08-18 17:34:59 +02:00
..
0001-bmp-check-return-value-in-gdImageBmpPtr.patch
0002-Fix-420-Potential-infinite-loop-in-gdImageCreateFrom.patch
0003-Fix-501-Uninitialized-read-in-gdImageCreateFromXbm-C.patch
0004-Fix-492-Potential-double-free-in-gdImage-Ptr.patch
0005-Fix-potential-NULL-pointer-dereference-in-gdImageClone.patch
0006-Fix-497-gdImageColorMatch-Out-Of-Bounds-Write-on-Heap-CVE-2019-6977.patch
Config.in
gd.hash
gd.mk