CVE-2007-3478 in GD Graphics Library
Summary
Race condition in gdImageStringFTEx (gdft_draw_bitmap) in gdft.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors, possibly involving truetype font (TTF) support.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Reservation
06/28/2007
Disclosure
06/28/2007
Status
Confirmed
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 37550 | libgd GD Graphics Library gdft.c race condition | 362 | Proof-of-Concept | Official fix | CVE-2007-3478 |