Jump to content

Advisories (MDKSA-2006:112 ): gd


Recommended Posts

Mandriva Advisories MDKSA-2006:112 : gd


Updated gd packages fix DoS vulnerability.

June 27th, 2006


The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas


Boutell graphics draw (GD) library (aka libgd) 2.0.33 allows remote


attackers to cause a denial of service (CPU consumption) via malformed


GIF data that causes an infinite loop.




gd-2.0.15 in Corporate 3.0 is not affected by this issue.




Packages have been patched to correct this issue.



The released versions of Mandriva GNU/Linux affected are:

  • 10.2
  • 2006.0

Full information about this advisory, including the updated packages, is available at:



Other references:



Posted automatically by aru (mdksec2mub v: mdksec2mub,v 1.2 2006/06/01 20:04:28 pituko Exp $)

Link to comment
Share on other sites


  • Create New...