CVE-2004-0941

Publication date 9 February 2005

Last updated 24 July 2024

Ubuntu priority

Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function, a different set of vulnerabilities than CVE-2004-0990.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
libgd	7.04 feisty	Fixed 1.8.4.debian-1
	6.10 edgy	Fixed 1.8.4.debian-1
	6.06 LTS dapper	Fixed 1.8.4.debian-1
libgd2	7.04 feisty	Fixed 2.0.34~rc1-2ubuntu1.1
	6.10 edgy	Fixed 2.0.33-4ubuntu2.1
	6.06 LTS dapper	Fixed 2.0.33-2ubuntu5.2

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-25-1
libgd2 vulnerability
16 November 2004

USN-33-1
libgd vulnerabilities
30 November 2004

Other references

https://www.cve.org/CVERecord?id=CVE-2004-0941