Oval Definition:oval:org.mitre.oval:def:13910
Revision Date:2014-06-30Version:21
Title:USN-854-1 -- libgd2 vulnerabilities
Description:Tomas Hoger discovered that the GD library did not properly handle the number of colors in certain malformed GD images. If a user or automated system were tricked into processing a specially crafted GD image, an attacker could cause a denial of service or possibly execute arbitrary code. It was discovered that the GD library did not properly handle incorrect color indexes. An attacker could send specially crafted input to applications linked against libgd2 and cause a denial of service or possibly execute arbitrary code. This issue only affected Ubuntu 6.06 LTS. It was discovered that the GD library did not properly handle certain malformed GIF images. If a user or automated system were tricked into processing a specially crafted GIF image, an attacker could cause a denial of service. This issue only affected Ubuntu 6.06 LTS. It was discovered that the GD library did not properly handle large angle degree values. An attacker could send specially crafted input to applications linked against libgd2 and cause a denial of service. This issue only affected Ubuntu 6.06 LTS
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2007-3475
CVE-2007-3476
CVE-2007-3477
CVE-2009-3293
CVE-2009-3546
USN-854-1
USN-854-1
Platform(s):Ubuntu 6.06
Ubuntu 8.04
Ubuntu 8.10
Ubuntu 9.04
Ubuntu 9.10
Product(s):libgd2
Definition Synopsis
  • Release section
  • Ubuntu 8.04 is installed
  • AND Supported architectures section
  • Installed architecture is sparc
  • OR Installed architecture is i386
  • OR Installed architecture is amd64
  • OR Installed architecture is lpia
  • OR Installed architecture is powerpc
  • AND Packages section
  • libgd2-xpm DPKG is earlier than 2.0.35.dfsg-3ubuntu2.1
  • OR libgd2-noxpm DPKG is earlier than 2.0.35.dfsg-3ubuntu2.1
  • OR libgd2-xpm-dev DPKG is earlier than 2.0.35.dfsg-3ubuntu2.1
  • OR libgd2-noxpm-dev DPKG is earlier than 2.0.35.dfsg-3ubuntu2.1
  • OR libgd-tools DPKG is earlier than 2.0.35.dfsg-3ubuntu2.1
  • OR Release section
  • Ubuntu 8.10 is installed
  • AND Supported architectures section
  • Installed architecture is sparc
  • OR Installed architecture is i386
  • OR Installed architecture is amd64
  • OR Installed architecture is lpia
  • OR Installed architecture is powerpc
  • AND Packages section
  • libgd2-xpm DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.8.10.1
  • OR libgd2-noxpm DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.8.10.1
  • OR libgd2-xpm-dev DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.8.10.1
  • OR libgd2-noxpm-dev DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.8.10.1
  • OR libgd-tools DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.8.10.1
  • OR Release section
  • Ubuntu 9.10 is installed
  • AND Supported architectures section
  • Installed architecture is sparc
  • OR Installed architecture is i386
  • OR Installed architecture is amd64
  • OR Installed architecture is lpia
  • OR Installed architecture is powerpc
  • AND Packages section
  • libgd2-xpm DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.9.10.1
  • OR libgd2-noxpm DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.9.10.1
  • OR libgd2-xpm-dev DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.9.10.1
  • OR libgd2-noxpm-dev DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.9.10.1
  • OR libgd-tools DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.9.10.1
  • OR Release section
  • Ubuntu 6.06 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • libgd2 DPKG is earlier than 2.0.33-2ubuntu5.4
  • OR libgd2-dev DPKG is earlier than 2.0.33-2ubuntu5.4
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is sparc
  • OR Installed architecture is powerpc
  • OR Installed architecture is amd64
  • OR Installed architecture is i386
  • AND Packages section
  • libgd2-xpm DPKG is earlier than 2.0.33-2ubuntu5.4
  • OR libgd2-noxpm DPKG is earlier than 2.0.33-2ubuntu5.4
  • OR libgd2-xpm-dev DPKG is earlier than 2.0.33-2ubuntu5.4
  • OR libgd2-noxpm-dev DPKG is earlier than 2.0.33-2ubuntu5.4
  • OR libgd-tools DPKG is earlier than 2.0.33-2ubuntu5.4
  • OR Release section
  • Ubuntu 9.04 is installed
  • AND Supported architectures section
  • Installed architecture is sparc
  • OR Installed architecture is i386
  • OR Installed architecture is amd64
  • OR Installed architecture is lpia
  • OR Installed architecture is powerpc
  • AND Packages section
  • libgd2-xpm DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.9.04.1
  • OR libgd2-noxpm DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.9.04.1
  • OR libgd2-xpm-dev DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.9.04.1
  • OR libgd2-noxpm-dev DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.9.04.1
  • OR libgd-tools DPKG is earlier than 2.0.36~rc1~dfsg-3ubuntu1.9.04.1
  • BACK