Oval Definition:oval:org.opensuse.security:def:20073996
Revision Date:2022-09-02Version:1
Title:CVE-2007-3996
Description:

Multiple integer overflows in libgd in PHP before 5.2.4 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large (1) srcW or (2) srcH value to the (a) gdImageCopyResized function, or a large (3) sy (height) or (4) sx (width) value to the (b) gdImageCreate or the (c) gdImageCreateTrueColor function.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2007-3996
Mitre CVE-2007-3996
SUSE CVE-2007-3996
SUSE-SA:2008:004
Platform(s):Novell Linux Desktop 9 SDK for x86
Novell Linux Desktop 9 SDK for x86_64
Open Enterprise Server
SUSE CORE 9 for AMD64 and Intel EM64T
SUSE CORE 9 for IBM POWER
SUSE CORE 9 for IBM S/390 31bit
SUSE CORE 9 for IBM zSeries 64bit
SUSE CORE 9 for Itanium Processor Family
SUSE CORE 9 for x86
SUSE LINUX 10.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Desktop 12 SP5
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 11 SP2
SUSE Linux Enterprise Server for SAP Applications 11 SP3
SUSE Linux Enterprise Server for SAP Applications 11 SP4
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Software Development Kit 12 SP5
Product(s):
Definition Synopsis
  • Release Information
  • suse101 is installed
  • AND
  • apache2-mod_php5 less than 5.1.2-29.50
  • OR php5-bcmath less than 5.1.2-29.50
  • OR php5-bz2 less than 5.1.2-29.50
  • OR php5-calendar less than 5.1.2-29.50
  • OR php5-ctype less than 5.1.2-29.50
  • OR php5-curl less than 5.1.2-29.50
  • OR php5-dba less than 5.1.2-29.50
  • OR php5-dbase less than 5.1.2-29.50
  • OR php5-devel less than 5.1.2-29.50
  • OR php5-dom less than 5.1.2-29.50
  • OR php5-exif less than 5.1.2-29.50
  • OR php5-fastcgi less than 5.1.2-29.50
  • OR php5-filepro less than 5.1.2-29.50
  • OR php5-ftp less than 5.1.2-29.50
  • OR php5-gd less than 5.1.2-29.50
  • OR php5-gettext less than 5.1.2-29.50
  • OR php5-gmp less than 5.1.2-29.50
  • OR php5-iconv less than 5.1.2-29.50
  • OR php5-imap less than 5.1.2-29.50
  • OR php5-ldap less than 5.1.2-29.50
  • OR php5-mbstring less than 5.1.2-29.50
  • OR php5-mcrypt less than 5.1.2-29.50
  • OR php5-mhash less than 5.1.2-29.50
  • OR php5-mysql less than 5.1.2-29.50
  • OR php5-mysqli less than 5.1.2-29.50
  • OR php5-ncurses less than 5.1.2-29.50
  • OR php5-odbc less than 5.1.2-29.50
  • OR php5-openssl less than 5.1.2-29.50
  • OR php5-pcntl less than 5.1.2-29.50
  • OR php5-pdo less than 5.1.2-29.50
  • OR php5-pdo_mysql less than 5.1.2-29.50
  • OR php5-pdo_pgsql less than 5.1.2-29.50
  • OR php5-pdo_sqlite less than 5.1.2-29.50
  • OR php5-pear less than 5.1.2-29.50
  • OR php5-pgsql less than 5.1.2-29.50
  • OR php5-posix less than 5.1.2-29.50
  • OR php5-pspell less than 5.1.2-29.50
  • OR php5-shmop less than 5.1.2-29.50
  • OR php5-snmp less than 5.1.2-29.50
  • OR php5-soap less than 5.1.2-29.50
  • OR php5-sockets less than 5.1.2-29.50
  • OR php5-sqlite less than 5.1.2-29.50
  • OR php5-sysvmsg less than 5.1.2-29.50
  • OR php5-sysvsem less than 5.1.2-29.50
  • OR php5-sysvshm less than 5.1.2-29.50
  • OR php5-tidy less than 5.1.2-29.50
  • OR php5-tokenizer less than 5.1.2-29.50
  • OR php5-wddx less than 5.1.2-29.50
  • OR php5-xmlreader less than 5.1.2-29.50
  • OR php5-xmlrpc less than 5.1.2-29.50
  • OR php5-xmlwriter less than 5.1.2-29.50
  • OR php5-xsl less than 5.1.2-29.50
  • OR php5-zlib less than 5.1.2-29.50
  • OR Package Information
  • sles9-nld-sdk is installed
  • mod_php4-core less than 4.3.4-43.85
  • OR php4-bcmath less than 4.3.4-43.85
  • OR php4-bz2 less than 4.3.4-43.85
  • OR php4-calendar less than 4.3.4-43.85
  • OR php4-ctype less than 4.3.4-43.85
  • OR php4-curl less than 4.3.4-43.85
  • OR php4-dba less than 4.3.4-43.85
  • OR php4-dbase less than 4.3.4-43.85
  • OR php4-devel less than 4.3.4-43.85
  • OR php4-domxml less than 4.3.4-43.85
  • OR php4-exif less than 4.3.4-43.85
  • OR php4-fastcgi less than 4.3.4-43.85
  • OR php4-filepro less than 4.3.4-43.85
  • OR php4-ftp less than 4.3.4-43.85
  • OR php4-gd less than 4.3.4-43.85
  • OR php4-gettext less than 4.3.4-43.85
  • OR php4-gmp less than 4.3.4-43.85
  • OR php4-iconv less than 4.3.4-43.85
  • OR php4-imap less than 4.3.4-43.85
  • OR php4-ldap less than 4.3.4-43.85
  • OR php4-mbstring less than 4.3.4-43.85
  • OR php4-mcal less than 4.3.4-43.85
  • OR php4-mcrypt less than 4.3.4-43.85
  • OR php4-mhash less than 4.3.4-43.85
  • OR php4-mime_magic less than 4.3.4-43.85
  • OR php4-mysql less than 4.3.4-43.85
  • OR php4-pear less than 4.3.4-43.85
  • OR php4-pgsql less than 4.3.4-43.85
  • OR php4-qtdom less than 4.3.4-43.85
  • OR php4-readline less than 4.3.4-43.85
  • OR php4-recode less than 4.3.4-43.85
  • OR php4-servlet less than 4.3.4-43.85
  • OR php4-session less than 4.3.4-43.85
  • OR php4-shmop less than 4.3.4-43.85
  • OR php4-snmp less than 4.3.4-43.85
  • OR php4-sockets less than 4.3.4-43.85
  • OR php4-swf less than 4.3.4-43.85
  • OR php4-sysvsem less than 4.3.4-43.85
  • OR php4-sysvshm less than 4.3.4-43.85
  • OR php4-unixODBC less than 4.3.4-43.85
  • OR php4-wddx less than 4.3.4-43.85
  • OR php4-xslt less than 4.3.4-43.85
  • OR php4-yp less than 4.3.4-43.85
  • OR php4-zlib less than 4.3.4-43.85
  • OR php4 less than 4.3.4-43.85
  • OR
  • sles9-oes is installed
  • apache-mod_php4 less than 4.3.4-43.85
  • OR apache2-mod_php4 less than 4.3.4-43.85
  • OR mod_php4-apache2 less than 4.3.4-43.85
  • OR mod_php4-core less than 4.3.4-43.85
  • OR mod_php4-servlet less than 4.3.4-43.85
  • OR php4-bcmath less than 4.3.4-43.85
  • OR php4-bz2 less than 4.3.4-43.85
  • OR php4-calendar less than 4.3.4-43.85
  • OR php4-ctype less than 4.3.4-43.85
  • OR php4-curl less than 4.3.4-43.85
  • OR php4-dba less than 4.3.4-43.85
  • OR php4-dbase less than 4.3.4-43.85
  • OR php4-devel less than 4.3.4-43.85
  • OR php4-domxml less than 4.3.4-43.85
  • OR php4-exif less than 4.3.4-43.85
  • OR php4-fastcgi less than 4.3.4-43.85
  • OR php4-filepro less than 4.3.4-43.85
  • OR php4-ftp less than 4.3.4-43.85
  • OR php4-gd less than 4.3.4-43.85
  • OR php4-gettext less than 4.3.4-43.85
  • OR php4-gmp less than 4.3.4-43.85
  • OR php4-iconv less than 4.3.4-43.85
  • OR php4-imap less than 4.3.4-43.85
  • OR php4-ldap less than 4.3.4-43.85
  • OR php4-mbstring less than 4.3.4-43.85
  • OR php4-mcal less than 4.3.4-43.85
  • OR php4-mcrypt less than 4.3.4-43.85
  • OR php4-mhash less than 4.3.4-43.85
  • OR php4-mime_magic less than 4.3.4-43.85
  • OR php4-mysql less than 4.3.4-43.85
  • OR php4-pear less than 4.3.4-43.85
  • OR php4-pgsql less than 4.3.4-43.85
  • OR php4-qtdom less than 4.3.4-43.85
  • OR php4-readline less than 4.3.4-43.85
  • OR php4-recode less than 4.3.4-43.85
  • OR php4-session less than 4.3.4-43.85
  • OR php4-shmop less than 4.3.4-43.85
  • OR php4-snmp less than 4.3.4-43.85
  • OR php4-sockets less than 4.3.4-43.85
  • OR php4-swf less than 4.3.4-43.85
  • OR php4-sysvsem less than 4.3.4-43.85
  • OR php4-sysvshm less than 4.3.4-43.85
  • OR php4-unixODBC less than 4.3.4-43.85
  • OR php4-wddx less than 4.3.4-43.85
  • OR php4-xslt less than 4.3.4-43.85
  • OR php4-yp less than 4.3.4-43.85
  • OR php4-zlib less than 4.3.4-43.85
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND php5 is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • OR SUSE Linux Enterprise Server 11 SP4 is installed
  • OR SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • OR SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND php53 is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • OR SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
  • AND
  • php5 is not affected
  • OR php53 is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND
  • php5 is not affected
  • OR php7 is not affected
  • OR php72 is not affected
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND
  • php5 is not affected
  • OR php7 is not affected
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP5 is installed
  • AND
  • php7-devel is not affected
  • OR php72-devel is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND php5 is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND php53 is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • php5 is not affected
  • OR php53 is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed
  • AND Package Information
  • php7-devel is not affected
  • OR php72-devel is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • OR SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND Package Information
  • php5 is not affected
  • OR php7 is not affected
  • OR php72 is not affected
    • BACK