« List of all CVEs

CVE-2018-14553

Published: 2/11/2020 Last updated: 8/5/2024 Reserved: 7/23/2018

gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL pointer dereference allowing attackers to crash an application via a specific function call sequence. Only affects PHP when linked with an external libgd (not bundled).

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (1)

conf-gd

Products affected (1)

Product Vendor Version
n/a n/a < 3200144a2fa4209dc084a19941b9b203b43580f0

References (36)