Bugtraq mailing list archives

Re: [Full-disclosure] [USN-515-1] t1lib vulnerability

From: Ismail Dönmez <ismail () pardus org tr>
Date: Fri, 21 Sep 2007 16:21:00 +0300

On Friday 21 September 2007 15:30:31 3APA3A wrote:

Dear Kees Cook,

CVE-2007-4033  is  "Buffer  overflow  in php_gd2.dll in the gd (PHP_GD2)
extension  in  PHP  5.2.3  allows context-dependent attackers to execute
arbitrary code via a long argument to the imagepsloadfont function."


Correct URL is http://www.bugtraq.ir/adv/t1lib.txt though no CVE is assigned 
AFAIK.

Regards,
ismail

-- 
Be the change you want to see in the world.

Current thread:

[USN-515-1] t1lib vulnerability Kees Cook (Sep 19)
- Re: [USN-515-1] t1lib vulnerability 3APA3A (Sep 21)
  - Re: [Full-disclosure] [USN-515-1] t1lib vulnerability Ismail Dönmez (Sep 21)
  - Re: [USN-515-1] t1lib vulnerability Kees Cook (Sep 21)