Description
Buffer overflow in the imageloadfont function in ext/gd/gd.c in PHP 4.4.x before 4.4.9 and PHP 5.2 before 5.2.6-r6 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font file.
Remediation
References
Related Vulnerabilities
WordPress Plugin CYSTEME Finder, the admin files explorer Multiple Vulnerabilities (1.3)
ReviveAdserver URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-8143)
WordPress Plugin TablePress XML External Entity Injection (1.8)
Atlassian Jira Incorrect Authorization Vulnerability (CVE-2019-3403)