CVE-2014-2497 in PHP
Сводка
по MITRE
The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP 5.4.26 and earlier, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted color table in an XPM file.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.