Bugtraq: Re: [USN-515-1] t1lib vulnerability

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: [USN-515-1] t1lib vulnerability

From: 3APA3A <3APA3A () SECURITY NNOV RU>
Date: Fri, 21 Sep 2007 16:30:31 +0400

Dear Kees Cook,

CVE-2007-4033  is  "Buffer  overflow  in php_gd2.dll in the gd (PHP_GD2)
extension  in  PHP  5.2.3  allows context-dependent attackers to execute
arbitrary code via a long argument to the imagepsloadfont function."

Please, provide valid CVE entry.

--Thursday, September 20, 2007, 12:18:02 AM, you wrote to ubuntu-security-announce () lists ubuntu com:

KC> =========================================================== 
KC> Ubuntu Security Notice USN-515-1         September 19, 2007
KC> t1lib vulnerability
KC> CVE-2007-4033
KC> ===========================================================


-- 
~/ZARAZA http://securityvulns.com/
Sir Isaac Newton discovered an apple falling to the ground (Mark Twain)

By Date By Thread

Current thread:

[USN-515-1] t1lib vulnerability Kees Cook (Sep 19)
- Re: [USN-515-1] t1lib vulnerability 3APA3A (Sep 21)
  - Re: [Full-disclosure] [USN-515-1] t1lib vulnerability Ismail Dönmez (Sep 21)
  - Re: [USN-515-1] t1lib vulnerability Kees Cook (Sep 21)