CVE-2004-0941 Information

Description

Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function a different set of vulnerabilities than CVE-2004-0990.

Reference

http://secunia.com/advisories/13179/ http://secunia.com/advisories/18686 http://secunia.com/advisories/20824 http://secunia.com/advisories/21050 http://www.ciac.org/ciac/bulletins/p-071.shtml http://www.debian.org/security/2004/dsa-601 http://www.mandriva.com/security/advisories?name=MDKSA-2006:113 http://www.mandriva.com/security/advisories?name=MDKSA-2006:114 http://www.mandriva.com/security/advisories?name=MDKSA-2006:122 http://www.redhat.com/support/errata/RHSA-2004-638.html http://www.redhat.com/support/errata/RHSA-2006-0194.html http://www.securityfocus.com/bid/11663 http://www.trustix.org/errata/2004/0058 https://exchange.xforce.ibmcloud.com/vulnerabilities/18048 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A11176 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A1195 https://www.ubuntu.com/usn/usn-25-1/ https://www.ubuntu.com/usn/usn-33-1/