Description

Integer overflow in the gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an imagecrop function call with a large x dimension value, leading to a heap-based buffer overflow.

Remediation

References

CVE-2013-7226

Related Vulnerabilities

MySQL Other Vulnerability (CVE-2009-4019)

Jboss EAP Insertion of Sensitive Information into Log File Vulnerability (CVE-2019-10212)

WordPress Plugin WordPress Calls to Action Unspecified Vulnerability (2.3.5)

WordPress Plugin Pardakht Delkhah Cross-Site Scripting (2.9.2)

Oracle Application Server Other Vulnerability (CVE-2004-1774)

Severity

Medium

Classification

CVE-2013-7226

Tags

Missing Update Known Vulnerabilities