In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using
imageloadfont() function in gd extension, it is possible to supply a
specially crafted font file, such as if the loaded font is used with
imagechar() function, the read outside allocated buffer will be used. This
can lead to crashes or disclosure of confidential information.
Author | Note |
---|---|
sbeattie | PEAR issues should go against php-pear as of xenial |
leosilva | introduced by 88b603768f8e5074ad5cbdccc1e0779089fac9d0 in php7.40.alpha2. |