CVE-2014-2497

Severity

43%

Complexity

86%

Confidentiality

48%

The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP 5.4.26 and earlier, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted color table in an XPM file.

The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP 5.4.26 and earlier, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted color table in an XPM file.

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:N/A:P).

Overview

Type

PHP

First reported 10 years ago

2014-03-21 14:55:00

Last updated 8 years ago

2017-01-07 02:59:00

Affected Software

PHP PHP 5.0.0

5.0.0

PHP PHP 5.0.0 Beta1

5.0.0

PHP PHP 5.0.0 Beta2

5.0.0

PHP PHP 5.0.0 Beta3

5.0.0

PHP PHP 5.0.0 Beta4

5.0.0

PHP PHP 5.0.0 RC1

5.0.0

PHP PHP 5.0.0 RC2

5.0.0

PHP PHP 5.0.0 RC3

5.0.0

PHP PHP 5.0.1

5.0.1

PHP PHP 5.0.2

5.0.2

PHP PHP 5.0.3

5.0.3

PHP PHP 5.0.4

5.0.4

PHP PHP 5.0.5

5.0.5

PHP PHP 5.1.0

5.1.0

PHP PHP 5.1.1

5.1.1

PHP PHP 5.1.2

5.1.2

PHP PHP 5.1.3

5.1.3

PHP 5.1.4

5.1.4

PHP PHP 5.1.5

5.1.5

PHP PHP 5.1.6

5.1.6

PHP 5.2.0

5.2.0

PHP 5.2.1

5.2.1

PHP 5.2.2

5.2.2

PHP 5.2.3

5.2.3

PHP 5.2.4

5.2.4

PHP 5.2.5

5.2.5

PHP 5.2.6

5.2.6

PHP 5.2.7

5.2.7

PHP 5.2.8

5.2.8

PHP 5.2.9

5.2.9

PHP 5.2.10

5.2.10

PHP 5.2.11

5.2.11

PHP 5.2.12

5.2.12

PHP 5.2.13

5.2.13

PHP 5.2.14

5.2.14

PHP 5.2.15

5.2.15

PHP 5.2.16

5.2.16

PHP 5.2.17

5.2.17

PHP 5.3.0

5.3.0

PHP 5.3.1

5.3.1

PHP 5.3.2

5.3.2

PHP 5.3.3

5.3.3

PHP 5.3.4

5.3.4

PHP 5.3.5

5.3.5

PHP 5.3.6

5.3.6

PHP 5.3.7

5.3.7

PHP 5.3.8

5.3.8

PHP 5.3.9

5.3.9

PHP 5.3.10

5.3.10

PHP 5.3.11

5.3.11

PHP 5.3.12

5.3.12

PHP 5.3.13

5.3.13

PHP 5.3.14

5.3.14

PHP 5.3.15

5.3.15

PHP 5.3.16

5.3.16

PHP 5.3.17

5.3.17

PHP 5.3.18

5.3.18

PHP 5.3.19

5.3.19

PHP 5.3.20

5.3.20

PHP 5.3.21

5.3.21

PHP 5.3.22

5.3.22

PHP 5.3.23

5.3.23

PHP 5.3.24

5.3.24

PHP 5.3.25

5.3.25

PHP 5.3.26

5.3.26

PHP 5.3.27

5.3.27

PHP 5.4.0

5.4.0

PHP 5.4.1

5.4.1

PHP 5.4.2

5.4.2

PHP 5.4.3

5.4.3

PHP 5.4.4

5.4.4

PHP 5.4.5

5.4.5

PHP 5.4.6

5.4.6

PHP 5.4.7

5.4.7

PHP 5.4.8

5.4.8

PHP 5.4.9

5.4.9

PHP 5.4.10

5.4.10

PHP 5.4.11

5.4.11

PHP 5.4.12

5.4.12

PHP 5.4.12 release candidate 1

5.4.12

PHP 5.4.12 release candidate 2

5.4.12

PHP 5.4.13

5.4.13

PHP 5.4.13 release candidate 1

5.4.13

PHP 5.4.14

5.4.14

PHP 5.4.14 release candidate 1

5.4.14

PHP 5.4.15 release candidate 1

5.4.15

PHP 5.4.16 release candidate 1

5.4.16

PHP 5.4.17

5.4.17

PHP 5.4.18

5.4.18

PHP 5.4.19

5.4.19

PHP 5.4.20

5.4.20

PHP 5.4.21

5.4.21

PHP 5.4.22

5.4.22

PHP 5.4.23

5.4.23

PHP 5.4.24

5.4.24

PHP 5.4.25

5.4.25

PHP PHP

References

http://advisories.mageia.org/MGASA-2014-0288.html

APPLE-SA-2015-04-08-2

SUSE-SU-2014:0868

SUSE-SU-2014:0869

RHSA-2014:1326

RHSA-2014:1327

RHSA-2014:1765

RHSA-2014:1766

59061

59418

59496

59652

DSA-3215

MDVSA-2015:153

http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

66233

USN-2987-1

https://bugs.php.net/bug.php?id=66901

Exploit

https://bugzilla.redhat.com/show_bug.cgi?id=1076676

GLSA-201607-04

https://support.apple.com/HT204659

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.