CVE-2018-5711
moderate-risk
Published 2018-01-16
gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated by a call to the imagecreatefromgif or imagecreatefromstring PHP function. This is related to GetCode_ and gdImageCreateFromGifCtx.
Do I need to act?
~
7.8% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.5/10
Medium
LOCAL
/ LOW complexity
Affected Products (7)
References (22)
Release Notes
http://php.net/ChangeLog-5.php
Release Notes
http://php.net/ChangeLog-7.php
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:1296
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/01/msg00022.html
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/01/msg00028.html
Third Party Advisory
https://security.gentoo.org/glsa/201903-18
Third Party Advisory
https://usn.ubuntu.com/3755-1/
Release Notes
http://php.net/ChangeLog-5.php
Release Notes
http://php.net/ChangeLog-7.php
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:1296
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/01/msg00022.html
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/01/msg00028.html
Third Party Advisory
https://security.gentoo.org/glsa/201903-18
and 2 more references
42
/ 100
moderate-risk
Severity
18/34 · Moderate
Exploitability
10/34 · Low
Exposure
14/34 · Moderate