CVE-2018-5711

gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated by a call to the imagecreatefromgif or imagecreatefromstring PHP function. This is related to GetCode_ and gdImageCreateFromGifCtx.

Published: Jan 16, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-5711
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

CWE-681
CWE-835

Affected Software
References

Software	From	Fixed in
php / php	7.2.0	7.2.0.x
php / php	7.1.0.x	7.1.12.x
php / php	7.0.0	7.0.26.x
php / php	-	5.6.32.x
debian / debian_linux	8.0	8.0.x
debian / debian_linux	7.0	7.0.x
canonical / ubuntu_linux	16.04	16.04.x
canonical / ubuntu_linux	14.04	14.04.x
canonical / ubuntu_linux	18.04	18.04.x

http://php.net/ChangeLog-5.php
http://php.net/ChangeLog-7.php
https://access.redhat.com/errata/RHSA-2018:1296
https://access.redhat.com/errata/RHSA-2019:2519
https://bugs.php.net/bug.php?id=75571
https://lists.debian.org/debian-lts-announce/2018/01/msg00022.html
https://lists.debian.org/debian-lts-announce/2019/01/msg00028.html
https://lists.fedoraproject.org/archives/list/[email protected]/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/
https://security.gentoo.org/glsa/201903-18
https://usn.ubuntu.com/3755-1/
https://www.oracle.com/security-alerts/cpuapr2020.html

Vulnerability Database

289,689

CVE-2018-5711