CVE-2007-3996
ADVISORY - nistSummary
Multiple integer overflows in libgd in PHP before 5.2.4 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large (1) srcW or (2) srcH value to the (a) gdImageCopyResized function, or a large (3) sy (height) or (4) sx (width) value to the (b) gdImageCreate or the (c) gdImageCreateTrueColor function.
EPSS Score: 0.02786 (0.909)
Common Weakness Enumeration (CWE)
ADVISORY - nist
Numeric Errors
ADVISORY - redhat
Integer Overflow or Wraparound
Sign in to Docker Scout
See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.
Sign in