Fmunozso

**Name of the Vulnerable Software and Affected Versions** GD Graphics Library versions prior to 2.2.2 PHP versions prior to 5.6.28 and 7.x prior to 7.0.13 **Description** The issue is related to a stack consumption vulnerability in the `gdImageFillToBorder` function. This vulnerability can be exploited by remote attackers to cause a denial of service, resulting in a segmentation violation. The exploitation occurs when a crafted `imagefilltoborder` call is made, triggering the use of a negative color value. **Recommendations** For GD Graphics Library versions prior to 2.2.2, update to version 2.2.2 or later. For PHP versions prior to 5.6.28, update to version 5.6.28 or later. For PHP 7.x versions prior to 7.0.13, update to version 7.0.13 or later.

**Name of the Vulnerable Software and Affected Versions** GD Graphics Library versions prior to 2.2.0 **Description** The issue allows context-dependent attackers to obtain sensitive information from process memory or cause a denial of service via a long name. This is due to a stack-based buffer under-read and application crash in the gd xbm.c file. **Recommendations** For versions prior to 2.2.0, update to version 2.2.0 or later to resolve the issue.