CVE-2019-6978 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	9.8 CRITICAL	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 90%

Vendor	Product	Version
libgd	libgd	2.2.5
debian	debian_linux	8.0
debian	debian_linux	9.0
canonical	ubuntu_linux	14.04
canonical	ubuntu_linux	16.04
canonical	ubuntu_linux	18.04
canonical	ubuntu_linux	18.10

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

libgd2

bullseye	2.3.0-2 fixed
bookworm	2.3.3-9 fixed
sid	2.3.3-12 fixed
trixie	2.3.3-12 fixed

Ubuntu Releases

Ubuntu Product

Codename

libgd2

hirsute	not-affected
groovy	not-affected
focal	not-affected
eoan	not-affected
disco	not-affected
cosmic	Fixed 2.2.5-4ubuntu1.1 released
bionic	Fixed 2.2.5-4ubuntu0.3 released
xenial	Fixed 2.1.1-4ubuntu0.16.04.11 released
trusty	Fixed 2.1.0-3ubuntu0.11 released

php5

hirsute	dne
groovy	dne
focal	dne
eoan	dne
disco	dne
cosmic	dne
bionic	dne
xenial	dne
trusty	not-affected

php7.0

hirsute	dne
groovy	dne
focal	dne
eoan	dne
disco	dne
cosmic	dne
bionic	dne
xenial	not-affected
trusty	dne

php7.2

hirsute	dne
groovy	dne
focal	dne
eoan	dne
disco	not-affected
cosmic	not-affected
bionic	not-affected
xenial	dne
trusty	dne

php7.3

hirsute	dne
groovy	dne
focal	dne
eoan	not-affected
disco	dne
cosmic	dne
bionic	dne
xenial	dne
trusty	dne

Common Weakness Enumeration

CWE-415 - Double Free
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

References

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00025.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00031.html

https://access.redhat.com/errata/RHSA-2019:2722

https://github.com/libgd/libgd/commit/553702980ae89c83f2d6e254d62cf82e204956d0

https://github.com/libgd/libgd/issues/492

https://github.com/php/php-src/commit/089f7c0bc28d399b0420aa6ef058e4c1c120b2ae

https://lists.debian.org/debian-lts-announce/2019/01/msg00028.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3WRUPZVT2MWFUEMVGTRAGDOBHLNMGK5R/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEYUUOW75YD3DENIPYMO263E6NL2NFHI/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TTXSLRZI5BCQT3H5KALG3DHUWUMNPDX2/

https://security.gentoo.org/glsa/201903-18

https://usn.ubuntu.com/3900-1/

https://www.debian.org/security/2019/dsa-4384

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00025.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00031.html

https://access.redhat.com/errata/RHSA-2019:2722

https://github.com/libgd/libgd/commit/553702980ae89c83f2d6e254d62cf82e204956d0

https://github.com/libgd/libgd/issues/492

https://github.com/php/php-src/commit/089f7c0bc28d399b0420aa6ef058e4c1c120b2ae

https://lists.debian.org/debian-lts-announce/2019/01/msg00028.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3WRUPZVT2MWFUEMVGTRAGDOBHLNMGK5R/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEYUUOW75YD3DENIPYMO263E6NL2NFHI/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TTXSLRZI5BCQT3H5KALG3DHUWUMNPDX2/

https://security.gentoo.org/glsa/201903-18

https://usn.ubuntu.com/3900-1/

https://www.debian.org/security/2019/dsa-4384