CVE-2007-3474

Table of Contents

Impact:
Low
Public Date:
2007-06-21
Bugzilla:
277091: CVE-2007-3474 libgd Denial of service and reentrancy fixes in GIF code

The MITRE CVE dictionary describes this issue as:

Multiple unspecified vulnerabilities in the GIF reader in the GD Graphics Library (libgd) before 2.0.35 have unspecified impact and user-assisted remote attack vectors.

Find out more about CVE-2007-3474 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This issue did not affect the versions of gd as shipped with Red Hat Enterprise Linux 2.1 or 3 as they did not offer GIF image support.

We do not plan to backport a fix for this issue to the gd packages as shipped in Red Hat Enterprise Linux 4 and 5 due to the low likelihood of an application affected by this problem being exposed in a way that would allow a trust boundary to be crossed.

Last Modified

CVE description copyright © 2017, The MITRE Corporation