MGASA-2020-0098

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2020-0098.html

Import Source

https://advisories.mageia.org/MGASA-2020-0098.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2020-0098

Related

CVE-2018-14553

Published

2020-02-24T21:44:46Z

Modified

2020-02-24T21:22:01Z

Summary

Updated libgd packages fix security vulnerability

Details

The updated packages fix a security vulnerability:

gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL pointer dereference allowing attackers to crash an application via a specific function call sequence. (CVE-2018-14553)

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:7 / libgd

Package

Name: libgd
Purl: pkg:rpm/mageia/libgd?distro=mageia-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.5-5.1.mga7

Ecosystem specific

{
    "section": "core"
}