CVE-2018-5711

CVE-2018-5711

Name

CVE-2018-5711

Description

gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated by a call to the imagecreatefromgif or imagecreatefromstring PHP function. This is related to GetCode_ and gdImageCreateFromGifCtx.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Patch	https://bugs.php.net/bug.php?id=75571
Release Notes	http://php.net/ChangeLog-7.php
Release Notes	http://php.net/ChangeLog-5.php
Third Party Advisory	https://lists.debian.org/debian-lts-announce/2018/01/msg00022.html
Third Party Advisory	https://access.redhat.com/errata/RHSA-2018:1296
Third Party Advisory	https://usn.ubuntu.com/3755-1/
Third Party Advisory	https://lists.debian.org/debian-lts-announce/2019/01/msg00028.html
Third Party Advisory	https://security.gentoo.org/glsa/201903-18
REDHAT	https://access.redhat.com/errata/RHSA-2019:2519
FEDORA	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/
N/A	https://www.oracle.com/security-alerts/cpuapr2020.html

Type

URI

Patch

https://bugs.php.net/bug.php?id=75571

Release Notes

http://php.net/ChangeLog-7.php

Release Notes

http://php.net/ChangeLog-5.php

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2018/01/msg00022.html

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:1296

Third Party Advisory

https://usn.ubuntu.com/3755-1/

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2019/01/msg00028.html

Third Party Advisory

https://security.gentoo.org/glsa/201903-18

REDHAT

https://access.redhat.com/errata/RHSA-2019:2519

FEDORA

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/

N/A

https://www.oracle.com/security-alerts/cpuapr2020.html

Match rules

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:php:php:7.2.0:::::::*`	php	== None	== 7.2.0
`cpe:2.3:a:php:php::::::::`	php	> 7.1.0	<= 7.1.12
`cpe:2.3:a:php:php::::::::`	php	>= 7.0.0	<= 7.0.26
`cpe:2.3:a:php:php::::::::`	php	>= None	<= 5.6.32

CPE URI

Source package

Min version

Max version

cpe:2.3:a:php:php:7.2.0:*:*:*:*:*:*:*

php

== None

== 7.2.0

cpe:2.3:a:php:php:*:*:*:*:*:*:*:*

php

> 7.1.0

<= 7.1.12

cpe:2.3:a:php:php:*:*:*:*:*:*:*:*

php

>= 7.0.0

<= 7.0.26

cpe:2.3:a:php:php:*:*:*:*:*:*:*:*

php

>= None

<= 5.6.32

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
gd	edge-main	2.2.5-r2	None	fixed
gd	3.22-main	2.2.5-r2	None	fixed
gd	3.21-main	2.2.5-r2	None	fixed
gd	3.20-main	2.2.5-r2	None	fixed
gd	3.19-main	2.2.5-r2	None	fixed
gd	3.18-main	2.2.5-r2	None	fixed
gd	3.17-main	2.2.5-r2	None	fixed
gd	3.12-main	2.2.5-r2	None	fixed
gd	3.11-main	2.2.5-r2	None	fixed
gd	3.10-main	2.2.5-r2	None	fixed

Source package

Branch

Version

Maintainer

Status

edge-main

2.2.5-r2

None

fixed

3.22-main

2.2.5-r2

None