CVE-2019-11038

When using the gdImageCreateFromXbm() function in the GD Graphics Library (aka LibGD) 2.2.5, as used in the PHP GD extension in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6, it is possible to supply data that will cause the function to use the value of uninitialized variable. This may lead to disclosing contents of the stack that has been left there by previous code.

Published: Jun 19, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-11038
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-908

Affected Software
References

Software	From	Fixed in
libgd / libgd	2.2.5	2.2.5.x
php / php	7.3.0	7.3.6
php / php	7.1.0	7.1.30
php / php	7.2.0	7.2.19
canonical / ubuntu_linux	16.04	16.04.x
canonical / ubuntu_linux	18.04	18.04.x
canonical / ubuntu_linux	14.04	14.04.x
canonical / ubuntu_linux	19.10	19.10.x
debian / debian_linux	8.0	8.0.x
debian / debian_linux	9.0	9.0.x
fedoraproject / fedora	29	29.x
fedoraproject / fedora	30	30.x
fedoraproject / fedora	32	32.x
suse / linux_enterprise_debuginfo	11-sp4	11-sp4.x
suse / linux_enterprise_desktop	12-sp4	12-sp4.x
opensuse / leap	15.1	15.1.x
suse / linux_enterprise_software_development_kit	12-sp5	12-sp5.x
suse / linux_enterprise_software_development_kit	12-sp4	12-sp4.x
suse / linux_enterprise_server	12-sp4	12-sp4.x
suse / linux_enterprise_server	12-sp5	12-sp5.x
suse / linux_enterprise_workstation_extension	12-sp4	12-sp4.x
suse / linux_enterprise_workstation_extension	12-sp5	12-sp5.x
redhat / enterprise_linux	7.0	7.0.x
redhat / software_collections	1.0	1.0.x
redhat / enterprise_linux	8.0	8.0.x

Vulnerability Database

289,599

CVE-2019-11038