Description
Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka libgd) through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted imagewebp and imagedestroy calls.
Remediation
References
Related Vulnerabilities
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-0827)
PostgreSQL Improper Input Validation Vulnerability (CVE-2019-10211)
WebLogic CVE-2020-2548 Vulnerability (CVE-2020-2548)
WordPress Plugin Gwolle Guestbook Multiple Vulnerabilities (2.1.0)
PrestaShop Incorrect Authorization Vulnerability (CVE-2020-5293)