Oval Definition:	oval:org.mitre.oval:def:22090
Revision Date: 2014-02-24 Version: 10 Title: RHSA-2010:0003: gd security update (Moderate) Description: The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5.3.1, and the GD Graphics Library 2.x, does not properly verify a certain colorsTotal structure member, which might allow remote attackers to conduct buffer overflow or buffer over-read attacks via a crafted GD file, a different vulnerability than CVE-2009-3293. NOTE: some of these details are obtained from third party information. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2010:0003 CVE-2009-3546 RHSA-2010:0003-01 Platform(s): CentOS Linux 5 Red Hat Enterprise Linux 5 Product(s): gd Definition Synopsis Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x AND Packages section gd-devel is earlier than 0:2.0.33-9.4.el5_4.2 OR gd-progs is earlier than 0:2.0.33-9.4.el5_4.2 OR gd is earlier than 0:2.0.33-9.4.el5_4.2
BACK