GD2 Graphics Draw Library - (bulletinjan2019)ID: oval:org.secpod.oval:def:2103558 | Date: (C)2019-11-25 (M)2024-04-17 |
Class: PATCH | Family: unix |
Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Code Execution . This attack appear to be exploitable via Specially Crafted Jpeg Image can trigger double free. This vulnerability appears to have been fixed in after commit ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5.
Product: |
x11/server/xvnc |
x11/library/toolkit/fltk |
system/display-manager/gdm |
system/display-manager/desktop-startup |
library/glib2 |
library/gd |
image/library/libtiff |
desktop/remote-desktop/tigervnc |