Description
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflow.
Remediation
References
Related Vulnerabilities
Plone CMS CVE-2017-1000483 Vulnerability (CVE-2017-1000483)
AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2023-26116)
WordPress 4.5.3 Directory Traversal Vulnerability (4.5.3)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2266)
WordPress Plugin Jetpack-WP Security, Backup, Speed, & Growth Cross-Site Scripting (6.4.2)