CVE-2017-7890
Description
The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read ~700 bytes from the top of the stack, potentially disclosing sensitive information.
Risk Information
Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
25.333
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| (RHSA-2018:0406) Moderate: php security update php-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-bcmath-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-cli-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-common-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-dba-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-devel-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-embedded-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-enchant-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-fpm-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-gd-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-intl-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-ldap-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-mbstring-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-mysql-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-mysqlnd-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-odbc-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-pdo-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-pgsql-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-process-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-pspell-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-recode-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-snmp-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-soap-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-xml-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| (RHSA-2018:0406) Moderate: php security update php-xmlrpc-5.4.16-43.el7_4.1.x86_64.rpm | Linux |
| SUSE-SU-2020:0623-1(SUSE Linux Enterprise Desktop 12-SP4 ) gd-2.1.0-24.17.1.x86_64.rpm | Linux |
| SUSE-SU-2020:0623-1(SUSE Linux Enterprise Desktop 12-SP4 ) gd-32bit-2.1.0-24.17.1.x86_64.rpm | Linux |
| SUSE-SU-2020:0623-1(SUSE Linux Enterprise Desktop 12-SP4 ) gd-debuginfo-2.1.0-24.17.1.x86_64.rpm | Linux |
| SUSE-SU-2020:0623-1(SUSE Linux Enterprise Desktop 12-SP4 ) gd-debuginfo-32bit-2.1.0-24.17.1.x86_64.rpm | Linux |
| SUSE-SU-2020:0623-1(SUSE Linux Enterprise Desktop 12-SP4 ) gd-debugsource-2.1.0-24.17.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234