• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: GD Graphics Library PNG File Processing Denial of Service Vulnerability

Severity: MODERATE

Description:

The GD Graphics Library (gdlib) is an open-source graphics library available for multiple platforms, including UNIX variants and Microsoft Windows. It is implemented in ANSI C and is designed for creating and manipulating PNG, JPEG, and GIF image formats.

The GD graphics library is prone to a denial-of-service vulnerability.

The problem occurs in the 'gdPngReadData()' function of 'gd_png.c' when handling a malicious PNG file. Specifically, a file containing truncated data can trigger this issue by initiating an infinite loop.

An attacker can exploit this issue to cause denial-of-service conditions in applications implementing the affected library.

GD graphics library 2.0.34 is reported vulnerable; other versions may be affected as well.

Affected Products:

• Avaya AES 3.0
• Avaya AES 3.1
• Avaya AES 3.1.3
• Avaya AES 3.1.4
• Avaya AES 4.0
• Avaya AES 4.0.1
• Avaya Communication Manager 3.1
• Avaya Communication Manager 4.0
• Avaya Communication Manager Server DEFINITY Server SI/CS
• Avaya Communication Manager Server S8100
• Avaya Communication Manager Server S8300
• Avaya Communication Manager Server S8500
• Avaya Communication Manager Server S8700
• Avaya Intuity AUDIX LX 2.0
• Avaya Intuity LX
• Avaya Intuity LX 2.0
• Avaya Message Networking
• Avaya Message Networking 3.1
• Avaya Message Networking MN 3.1
• Avaya Messaging Storage Server
• Avaya Messaging Storage Server 1.0
• Avaya Messaging Storage Server 2.0
• Avaya Messaging Storage Server 3.1
• Avaya Messaging Storage Server MM3.0
• Avaya Messaging Storage Server MSS 3.0
• Avaya SIP Enablement Services 3.0
• Avaya SIP Enablement Services 3.1
• CSTeX cstetex 2.0.2
• Debian Linux 4.0
• Debian Linux 4.0 alpha
• Debian Linux 4.0 amd64
• Debian Linux 4.0 arm
• Debian Linux 4.0 hppa
• Debian Linux 4.0 ia-32
• Debian Linux 4.0 ia-64
• Debian Linux 4.0 m68k
• Debian Linux 4.0 mips
• Debian Linux 4.0 mipsel
• Debian Linux 4.0 powerpc
• Debian Linux 4.0 s/390
• Debian Linux 4.0 sparc
• GD Graphics Library gdlib 2.0.33
• GD Graphics Library gdlib 2.0.34
• Gentoo Linux
• HP HP-UX B.11.11
• HP HP-UX B.11.23
• HP HP-UX B.11.31
• Linux kernel 2.4.19
• Linux kernel 2.4.21
• Linux kernel 2.6.5
• MandrakeSoft Corporate Server 3.0.0
• MandrakeSoft Corporate Server 3.0.0 x86_64
• MandrakeSoft Corporate Server 4.0
• MandrakeSoft Corporate Server 4.0.0 x86_64
• MandrakeSoft Linux Mandrake 2007.0
• MandrakeSoft Linux Mandrake 2007.0 x86_64
• MandrakeSoft Linux Mandrake 2007.1
• MandrakeSoft Linux Mandrake 2007.1 x86_64
• MandrakeSoft Multi Network Firewall 2.0.0
• OpenPKG OpenPKG Current
• OpenPKG OpenPKG E1.0-Solid
• PHP PHP 4.4.7
• PHP PHP 5.2
• PHP PHP 5.2.1
• PHP PHP 5.2.2
• RedHat Application Stack v1 for Enterprise Linux AS 4
• RedHat Application Stack v1 for Enterprise Linux ES 4
• RedHat Desktop 3.0.0
• RedHat Desktop 4.0.0
• RedHat Enterprise Linux 5 server
• RedHat Enterprise Linux AS 3
• RedHat Enterprise Linux AS 4
• RedHat Enterprise Linux Desktop 5 client
• RedHat Enterprise Linux Desktop Workstation 5 client
• RedHat Enterprise Linux ES 3
• RedHat Enterprise Linux ES 4
• RedHat Enterprise Linux WS 3
• RedHat Enterprise Linux WS 4
• RedHat Fedora Core6
• S.u.S.E. Linux 10.0 ppc
• S.u.S.E. Linux 10.0 x86
• S.u.S.E. Linux 10.0 x86-64
• S.u.S.E. Linux 10.1 ppc
• S.u.S.E. Linux 10.1 x86
• S.u.S.E. Linux 10.1 x86-64
• S.u.S.E. Linux Enterprise Server 10.SP1
• S.u.S.E. Linux Enterprise Server 8
• S.u.S.E. Linux Enterprise Server 9
• S.u.S.E. Novell Linux POS 9
• S.u.S.E. Open-Enterprise-Server
• S.u.S.E. SLE SDK 10.SP1
• S.u.S.E. SUSE LINUX Retail Solution 8.0.0
• S.u.S.E. SuSE Linux Openexchange Server 4.0.0
• S.u.S.E. SuSE Linux School Server for i386
• S.u.S.E. SuSE Linux Standard Server 8.0.0
• S.u.S.E. UnitedLinux 1.0.0
• S.u.S.E. openSUSE 10.2
• Slackware Linux -current
• Slackware Linux 10.2.0
• Slackware Linux 11.0
• Trustix Operating System Enterprise Server 2.0
• Trustix Secure Linux 2.0.0
• Trustix Secure Linux 2.2.0
• Trustix Secure Linux 3.0.0
• Trustix Secure Linux 3.0.5
• Turbolinux Appliance Server 2.0
• Turbolinux FUJI
• Turbolinux Home
• Turbolinux Multimedia
• Turbolinux Personal
• Turbolinux Turbolinux 10 F...
• Turbolinux Turbolinux Desktop 10.0.0
• Turbolinux Turbolinux FUJI
• Turbolinux Turbolinux Server 10.0.0
• Turbolinux Turbolinux Server 10.0.0 x64
• Ubuntu Ubuntu Linux 6.06 LTS amd64
• Ubuntu Ubuntu Linux 6.06 LTS i386
• Ubuntu Ubuntu Linux 6.06 LTS powerpc
• Ubuntu Ubuntu Linux 6.06 LTS sparc
• Ubuntu Ubuntu Linux 6.10 amd64
• Ubuntu Ubuntu Linux 6.10 i386
• Ubuntu Ubuntu Linux 6.10 powerpc
• Ubuntu Ubuntu Linux 6.10 sparc
• Ubuntu Ubuntu Linux 7.04 amd64
• Ubuntu Ubuntu Linux 7.04 i386
• Ubuntu Ubuntu Linux 7.04 powerpc
• Ubuntu Ubuntu Linux 7.04 sparc
• pTeX pTeX 3.1.10
• rPath rPath Linux 1

References:

• Avaya: ASA-2007-449 PHP security updates (RHSA-2007-0888, RHSA-2007-0889 & RHSA-2007-08
• Avaya: ASA-2008-099 - gd security update (RHSA-2008-0146)
• GD Graphics Library: FS#86 — Possible infinite loop in libgd/gd_png.c (inside png_set_read_fn() callb
• GD Graphics Library: gdlib Home Page
• PHP: ChangeLog Version 5.2.3
• PHP: PHP CVS Repository
• Red Hat: RHSA-2007:0889-5 php security update
• Red Hat: RHSA-2007:0890-2 php security update
• Red Hat: RHSA-2007:0891-5 php security update
• Red Hat: RHSA-2008:0146-2 - gd security update

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.