Home

CVE-2019-6977

Description

gdImageColorMatch in gd_color_match.c in the GD Graphics Library (aka LibGD) 2.2.5, as used in the imagecolormatch function in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1, has a heap-based buffer overflow. This can be exploited by an attacker who is able to trigger imagecolormatch calls with crafted image data.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
87.335

Associated Vulnerability

VulnerabilityOS Platform
GD Graphics Library (USN-3060-1) libgd3_2.1.0-3ubuntu0.8_amd64.debLinux
LibGD vulnerability (USN-3389-1) libgd-tools_2.1.0-3ubuntu0.8_i386.debLinux
LibGD vulnerability (USN-3389-1) libgd-tools_2.1.0-3ubuntu0.8_amd64.debLinux
GD Graphics Library (USN-3900-1) libgd3_2.2.5-4ubuntu0.3_i386.debLinux
GD Graphics Library (USN-3900-1) libgd3_2.2.5-4ubuntu0.3_amd64.debLinux
GD Graphics Library (USN-3900-1) libgd3_2.2.5-4ubuntu1.1_i386.debLinux
GD Graphics Library (USN-3900-1) libgd3_2.2.5-4ubuntu1.1_amd64.debLinux
GD Graphics Library (USN-3900-1) libgd3_2.1.0-3ubuntu0.11_i386.debLinux
GD Graphics Library (USN-3900-1) libgd3_2.1.0-3ubuntu0.11_amd64.debLinux
GD Graphics Library (USN-3900-1) libgd3_2.1.1-4ubuntu0.16.04.11_i386.debLinux
GD Graphics Library (USN-3900-1) libgd3_2.1.1-4ubuntu0.16.04.11_amd64.debLinux
GD Graphics Library (USN-3900-1) libgd-tools_2.2.5-4ubuntu0.3_i386.debLinux
GD Graphics Library (USN-3900-1) libgd-tools_2.2.5-4ubuntu0.3_amd64.debLinux
GD Graphics Library (USN-3900-1) libgd-tools_2.2.5-4ubuntu1.1_i386.debLinux
GD Graphics Library (USN-3900-1) libgd-tools_2.2.5-4ubuntu1.1_amd64.debLinux
GD Graphics Library (USN-3900-1) libgd-tools_2.1.0-3ubuntu0.11_i386.debLinux
GD Graphics Library (USN-3900-1) libgd-tools_2.1.0-3ubuntu0.11_amd64.debLinux
GD Graphics Library (USN-3900-1) libgd-tools_2.1.1-4ubuntu0.16.04.11_i386.debLinux
GD Graphics Library (USN-3900-1) libgd-tools_2.1.1-4ubuntu0.16.04.11_amd64.debLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) apache2-mod_php53-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) apache2-mod_php53-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-bcmath-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-bcmath-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-bz2-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-bz2-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-calendar-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-calendar-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-ctype-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-ctype-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-curl-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-curl-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-dba-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-dba-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-dom-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-dom-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-exif-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-exif-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-fastcgi-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-fastcgi-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-fileinfo-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-fileinfo-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-ftp-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-ftp-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-gd-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-gd-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-gettext-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-gettext-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-gmp-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-gmp-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-iconv-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-iconv-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-intl-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-intl-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-json-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-json-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-ldap-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-ldap-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-mbstring-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-mbstring-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-mcrypt-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-mcrypt-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-mysql-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-mysql-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-odbc-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-odbc-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-openssl-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-openssl-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-pcntl-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-pcntl-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-pdo-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-pdo-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-pear-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-pear-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-pgsql-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-pgsql-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-pspell-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-pspell-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-shmop-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-shmop-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-snmp-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-snmp-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-soap-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-soap-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-suhosin-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-suhosin-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-sysvmsg-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-sysvmsg-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-sysvsem-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-sysvsem-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-sysvshm-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-sysvshm-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-tokenizer-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-tokenizer-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-wddx-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-wddx-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-xmlreader-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-xmlreader-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-xmlrpc-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-xmlrpc-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-xmlwriter-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-xmlwriter-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-xsl-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-xsl-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-zip-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-zip-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-zlib-5.3.17-112.53.1.i586.rpmLinux
SUSE-SU-2019:13961-1(SUSE Linux Enterprise Server 11-SP4 ) php53-zlib-5.3.17-112.53.1.x86_64.rpmLinux
SUSE-SU-2019:0747-1(SUSE Linux Enterprise Desktop 12-SP4 ) gd-2.1.0-24.12.1.x86_64.rpmLinux
SUSE-SU-2019:0747-1(SUSE Linux Enterprise Desktop 12-SP4 ) gd-32bit-2.1.0-24.12.1.x86_64.rpmLinux
SUSE-SU-2019:0747-1(SUSE Linux Enterprise Desktop 12-SP4 ) gd-debuginfo-2.1.0-24.12.1.x86_64.rpmLinux
SUSE-SU-2019:0747-1(SUSE Linux Enterprise Desktop 12-SP4 ) gd-debuginfo-32bit-2.1.0-24.12.1.x86_64.rpmLinux
SUSE-SU-2019:0747-1(SUSE Linux Enterprise Desktop 12-SP4 ) gd-debugsource-2.1.0-24.12.1.x86_64.rpmLinux
gd security update (RLSA-2020:4659) gd-2.2.5-7.el8.i686.rpmLinux
gd security update (RLSA-2020:4659) gd-2.2.5-7.el8.x86_64.rpmLinux
gd security update (RLSA-2020:4659) gd-devel-2.2.5-7.el8.i686.rpmLinux
gd security update (RLSA-2020:4659) gd-devel-2.2.5-7.el8.x86_64.rpmLinux
Gd update (ELSA-2020-4659) gd-2.2.5-7.el8.i686.rpmLinux
Gd update (ELSA-2020-4659) gd-2.2.5-7.el8.x86_64.rpmLinux
Gd-devel update (ELSA-2020-4659) gd-devel-2.2.5-7.el8.i686.rpmLinux
Gd-devel update (ELSA-2020-4659) gd-devel-2.2.5-7.el8.x86_64.rpmLinux
Moderate: gd security update gd-2.2.5-7.el8.i686.rpmLinux
Moderate: gd security update gd-2.2.5-7.el8.x86_64.rpmLinux
Moderate: gd security update gd-devel-2.2.5-7.el8.i686.rpmLinux
Moderate: gd security update gd-devel-2.2.5-7.el8.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234