Description
Integer overflow in the gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an imagecrop function call with a large x dimension value, leading to a heap-based buffer overflow.
Remediation
References
Related Vulnerabilities
WordPress Plugin Google Analytics Top Content Widget Cross-Site Scripting (1.5.6)
Oracle Application Server CVE-2010-0066 Vulnerability (CVE-2010-0066)
WordPress Improper Input Validation Vulnerability (CVE-2014-9038)
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2068)