CVE-2004-0941

N/A Unknown
Published: February 09, 2005 Modified: April 16, 2026
View on NVD

Description

Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function, a different set of vulnerabilities than CVE-2004-0990.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://secunia.com/advisories/13179/
Source: cve@mitre.org
http://secunia.com/advisories/18686
Source: cve@mitre.org
http://secunia.com/advisories/20824
Source: cve@mitre.org
http://secunia.com/advisories/21050
Source: cve@mitre.org
http://www.ciac.org/ciac/bulletins/p-071.shtml
Source: cve@mitre.org
http://www.debian.org/security/2004/dsa-601
Source: cve@mitre.org
http://www.mandriva.com/security/advisories?name=MDKSA-2006:113
Source: cve@mitre.org
http://www.mandriva.com/security/advisories?name=MDKSA-2006:114
Source: cve@mitre.org
http://www.mandriva.com/security/advisories?name=MDKSA-2006:122
Source: cve@mitre.org
http://www.redhat.com/support/errata/RHSA-2004-638.html
Source: cve@mitre.org
http://www.redhat.com/support/errata/RHSA-2006-0194.html
Source: cve@mitre.org
http://www.securityfocus.com/bid/11663
Source: cve@mitre.org
Patch Vendor Advisory
http://www.trustix.org/errata/2004/0058
Source: cve@mitre.org
Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/18048
Source: cve@mitre.org
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11176
Source: cve@mitre.org
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1195
Source: cve@mitre.org
https://www.ubuntu.com/usn/usn-25-1/
Source: cve@mitre.org
https://www.ubuntu.com/usn/usn-33-1/
Source: cve@mitre.org
http://secunia.com/advisories/13179/
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/18686
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/20824
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/21050
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.ciac.org/ciac/bulletins/p-071.shtml
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.debian.org/security/2004/dsa-601
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDKSA-2006:113
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDKSA-2006:114
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mandriva.com/security/advisories?name=MDKSA-2006:122
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2004-638.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2006-0194.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/11663
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://www.trustix.org/errata/2004/0058
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/18048
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11176
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1195
Source: af854a3a-2127-422b-91ae-364da2661108
https://www.ubuntu.com/usn/usn-25-1/
Source: af854a3a-2127-422b-91ae-364da2661108
https://www.ubuntu.com/usn/usn-33-1/
Source: af854a3a-2127-422b-91ae-364da2661108

36 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
14.0%
94th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

trustix gd_graphics_library