summaryrefslogtreecommitdiff
path: root/docs
diff options
context:
space:
mode:
authorJonas Meurer <jonas@freesources.org>2019-06-11 12:16:46 +0200
committerMike Frysinger <vapier@gentoo.org>2019-09-02 04:25:39 -0400
commite13a342c079aeb73e31dfa19eaca119761bac3f3 (patch)
tree0c4537c33b80742c61a677d719cc7decd3200ac9 /docs
parentbbb46ab9a5083d5bfe11d21039e9a6a2b15f5aeb (diff)
downloadlibgd-e13a342c079aeb73e31dfa19eaca119761bac3f3.tar.gz
Fix #501: Uninitialized read in gdImageCreateFromXbm (CVE-2019-11038)
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2019-11038 Bug-Debian: https://bugs.debian.org/929821 Bug: https://github.com/libgd/libgd/issues/501 We have to ensure that `sscanf()` does indeed read a hex value here, and bail out otherwise. Original patch by Christoph M. Becker <cmbecker69@gmx.de> for PHP libgd ext. https://git.php.net/?p=php-src.git;a=commit;h=ed6dee9a198c904ad5e03113e58a2d2c200f5184
Diffstat (limited to 'docs')
0 files changed, 0 insertions, 0 deletions
View Lorry Controller Status