Skip to navigation

CVE Database

CVE-2006-4484

Impact: Moderate
Public: 2006-07-16
Bugzilla: 431568: CVE-2006-4484 gd: GIF handling buffer overflow

Details

The MITRE CVE dictionary describes this issue as:

Buffer overflow in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in.c in the GD extension in PHP before 5.1.5 allows remote attackers to have an unknown impact via a GIF file with input_code_size greater than MAX_LWZ_BITS, which triggers an overflow when initializing the table array.

Find out more about CVE-2006-4484 from the MITRE CVE dictionary and NIST NVD.

Red Hat security errata

Platform Errata Release Date
Red Hat Application Stack v1 for Enterprise Linux AS (v.4) (php) RHSA-2006:0688 October 05, 2006
Red Hat Enterprise Linux version 3 (php) RHSA-2006:0669 September 21, 2006
Red Hat Enterprise Linux version 4 (gd) RHSA-2008:0146 February 28, 2008
Red Hat Enterprise Linux version 4 (php) RHSA-2006:0669 September 21, 2006
Red Hat Enterprise Linux version 5 (gd) RHSA-2008:0146 February 28, 2008

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.