Description

Integer overflow in the gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an imagecrop function call with a large x dimension value, leading to a heap-based buffer overflow.

Remediation

References

CVE-2013-7226

Related Vulnerabilities

WordPress Plugin Google Analytics Top Content Widget Cross-Site Scripting (1.5.6)

Oracle Application Server CVE-2010-0066 Vulnerability (CVE-2010-0066)

WordPress Improper Input Validation Vulnerability (CVE-2014-9038)

Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2068)

MySQL CVE-2019-2632 Vulnerability (CVE-2019-2632)

Severity

Medium

Classification

CVE-2013-7226

Tags

Missing Update Known Vulnerabilities