go to bug id or search bugs for
This is a security sync with GD-2.2
GD2 stores the number of horizontal and vertical chunks as words (i.e. 2
byte unsigned). These values are multiplied and assigned to an int when
reading the image, what can cause integer overflows. We have to avoid
that, and also make sure that either chunk count is actually greater
than zero. If illegal chunk counts are detected, we bail out from
reading the image.
Add a Patch
Add a Pull Request
The following patch has been added/updated:
Patch Name: fix-73869
fix-73869 adds a respective PHPT, and should be applied against
Patch is merged into security repo as 5b5d9db3988b829e0b121b74bb3947f01c2796a1.
The fix has been released with PHP 5.6.30, 7.0.15 and 7.1.1, so