Description
Integer overflow in the gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an imagecrop function call with a large x dimension value, leading to a heap-based buffer overflow.
Remediation
References
Related Vulnerabilities
Moodle Other Vulnerability (CVE-2005-2247)
WordPress Plugin WP User Groups Cross-Site Request Forgery (2.0.0)
WordPress Plugin Site Reviews Multiple Vulnerabilities (6.5.1)
WordPress Plugin wpcu3er 'ajaxReq.php' Arbitrary File Upload (0.55)
OpenSSL Improper Input Validation Vulnerability (CVE-2010-0740)