CVE-2006-2906

Name of the Vulnerable Software and Affected Versions libgd version 2.0.33

Description The issue is related to the LZW decoding in the gdImageCreateFromGifPtr function, which allows remote attackers to cause a denial of service due to CPU consumption via malformed GIF data that causes an infinite loop. Multiple vulnerabilities in the libgd package may lead to disruption of protected information and can be exploited remotely.

Recommendations For libgd version 2.0.33, consider updating to a newer version that addresses the issue with the LZW decoding in the gdImageCreateFromGifPtr function to prevent denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.