Skip to navigation

Security Advisory gd security update

Advisory: RHSA-2004:638-14
Type: Security Advisory
Severity: Important
Issued on: 2004-12-16
Last updated on: 2005-05-26
Affected Products: Red Hat Desktop (v. 3)
Red Hat Enterprise Linux AS (v. 2.1)
Red Hat Enterprise Linux AS (v. 3)
Red Hat Enterprise Linux ES (v. 2.1)
Red Hat Enterprise Linux ES (v. 3)
Red Hat Enterprise Linux WS (v. 2.1)
Red Hat Enterprise Linux WS (v. 3)
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
CVEs (cve.mitre.org): CVE-2004-0941
CVE-2004-0990

Details

Updated gd packages that fix security issues with overflow in various
memory allocation calls are now available.

[Updated 24 May 2005]
Multilib packages have been added to this advisory

The gd packages contain a graphics library used for the dynamic creation of
images such as PNG and JPEG.

Several buffer overflows were reported in various memory allocation calls.
An attacker could create a carefully crafted image file in such a way that
it could cause ImageMagick to execute arbitrary code when processing the
image. The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2004-0990 to these issues.

While researching the fixes to these overflows, additional buffer overflows
were discovered in calls to gdMalloc. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2004-0941 to
these issues.

Users of gd should upgrade to these updated packages, which contain a
backported security patch, and are not vulnerable to these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

Updated packages

Red Hat Desktop (v. 3)

IA-32:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/i386/gd-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: 0277cba330cefb9ab1ebea7f15fa32c8
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/i386/gd-devel-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: d5b6b426e2e06f02a3d0e5f3180cf33c
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/i386/gd-progs-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: a8f4b292b1ef66452790e4dd2648c7a2
 
x86_64:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/i386/gd-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: 0277cba330cefb9ab1ebea7f15fa32c8
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/x86_64/gd-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 7cbaf334f370e69a009cc3e173bd43b2
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/x86_64/gd-devel-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 6e28767d002c70958e5f1f38a5420d0a
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/x86_64/gd-progs-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 003ce60cef5006f3c495aff9e767f4e2
 
Red Hat Enterprise Linux AS (v. 2.1)

IA-32:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-4.21.1/i386/gd-1.8.4-4.21.1.i386.rpm
Missing file
    MD5: 32f90ee0ee49fbaa0e9d83c32d773d44
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-4.21.1/i386/gd-devel-1.8.4-4.21.1.i386.rpm
Missing file
    MD5: ba50f74a3c45ceb6c6994fd16dd97846
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-4.21.1/i386/gd-progs-1.8.4-4.21.1.i386.rpm
Missing file
    MD5: e6cd529cd117dc14073f011a7cf35631
 
IA-64:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-4.21.1/ia64/gd-1.8.4-4.21.1.ia64.rpm
Missing file
    MD5: f3415f854fcc70689d9487386c5f5497
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-4.21.1/ia64/gd-devel-1.8.4-4.21.1.ia64.rpm
Missing file
    MD5: 3db197bc13dfc65b6debfc4e14eed791
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-4.21.1/ia64/gd-progs-1.8.4-4.21.1.ia64.rpm
Missing file
    MD5: a4f021b229c4b4d9710888b06fa0b57c
 
Red Hat Enterprise Linux AS (v. 3)

IA-32:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/i386/gd-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: 0277cba330cefb9ab1ebea7f15fa32c8
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/i386/gd-devel-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: d5b6b426e2e06f02a3d0e5f3180cf33c
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/i386/gd-progs-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: a8f4b292b1ef66452790e4dd2648c7a2
 
IA-64:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/i386/gd-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: 0277cba330cefb9ab1ebea7f15fa32c8
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/ia64/gd-1.8.4-12.3.1.ia64.rpm
Missing file
    MD5: ca3b5794089578356666c672355ad71f
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/ia64/gd-devel-1.8.4-12.3.1.ia64.rpm
Missing file
    MD5: 839ca9fd43bd92ec9bcbd324954f71e5
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/ia64/gd-progs-1.8.4-12.3.1.ia64.rpm
Missing file
    MD5: 7c0174f34dbe662e8852e1ffe25d8372
 
PPC:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/ppc/gd-1.8.4-12.3.1.ppc.rpm
Missing file
    MD5: 11c259e294f22220dad62674e7a54210
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/ppc64/gd-1.8.4-12.3.1.ppc64.rpm
Missing file
    MD5: 14428761748a25bd003674b116def010
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/ppc/gd-devel-1.8.4-12.3.1.ppc.rpm
Missing file
    MD5: 67456fab43a1b9d601c62a54a446be27
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/ppc/gd-progs-1.8.4-12.3.1.ppc.rpm
Missing file
    MD5: 2f900edcde2c6771bd82ce414133717b
 
s390:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/s390/gd-1.8.4-12.3.1.s390.rpm
Missing file
    MD5: 568eaf1ea4294befde060da07c4812c7
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/s390/gd-devel-1.8.4-12.3.1.s390.rpm
Missing file
    MD5: 4873cab38494fc574740b645d5673e33
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/s390/gd-progs-1.8.4-12.3.1.s390.rpm
Missing file
    MD5: 336923033fdc04176a0279d9127570a3
 
s390x:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/s390/gd-1.8.4-12.3.1.s390.rpm
Missing file
    MD5: 568eaf1ea4294befde060da07c4812c7
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/s390x/gd-1.8.4-12.3.1.s390x.rpm
Missing file
    MD5: adc06b68372a7d7bf375bbd88867b9af
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/s390x/gd-devel-1.8.4-12.3.1.s390x.rpm
Missing file
    MD5: cd195ca8593ec6404d01c82be4db5c47
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/s390x/gd-progs-1.8.4-12.3.1.s390x.rpm
Missing file
    MD5: 83f844555bdeb93f28c30e00fe2cf90d
 
x86_64:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/i386/gd-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: 0277cba330cefb9ab1ebea7f15fa32c8
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/x86_64/gd-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 7cbaf334f370e69a009cc3e173bd43b2
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/x86_64/gd-devel-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 6e28767d002c70958e5f1f38a5420d0a
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/x86_64/gd-progs-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 003ce60cef5006f3c495aff9e767f4e2
 
Red Hat Enterprise Linux ES (v. 2.1)

IA-32:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-4.21.1/i386/gd-1.8.4-4.21.1.i386.rpm
Missing file
    MD5: 32f90ee0ee49fbaa0e9d83c32d773d44
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-4.21.1/i386/gd-devel-1.8.4-4.21.1.i386.rpm
Missing file
    MD5: ba50f74a3c45ceb6c6994fd16dd97846
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-4.21.1/i386/gd-progs-1.8.4-4.21.1.i386.rpm
Missing file
    MD5: e6cd529cd117dc14073f011a7cf35631
 
Red Hat Enterprise Linux ES (v. 3)

IA-32:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/i386/gd-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: 0277cba330cefb9ab1ebea7f15fa32c8
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/i386/gd-devel-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: d5b6b426e2e06f02a3d0e5f3180cf33c
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/i386/gd-progs-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: a8f4b292b1ef66452790e4dd2648c7a2
 
IA-64:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/i386/gd-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: 0277cba330cefb9ab1ebea7f15fa32c8
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/ia64/gd-1.8.4-12.3.1.ia64.rpm
Missing file
    MD5: ca3b5794089578356666c672355ad71f
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/ia64/gd-devel-1.8.4-12.3.1.ia64.rpm
Missing file
    MD5: 839ca9fd43bd92ec9bcbd324954f71e5
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/ia64/gd-progs-1.8.4-12.3.1.ia64.rpm
Missing file
    MD5: 7c0174f34dbe662e8852e1ffe25d8372
 
x86_64:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/i386/gd-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: 0277cba330cefb9ab1ebea7f15fa32c8
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/x86_64/gd-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 7cbaf334f370e69a009cc3e173bd43b2
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/x86_64/gd-devel-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 6e28767d002c70958e5f1f38a5420d0a
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/x86_64/gd-progs-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 003ce60cef5006f3c495aff9e767f4e2
 
Red Hat Enterprise Linux WS (v. 2.1)

IA-32:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-4.21.1/i386/gd-1.8.4-4.21.1.i386.rpm
Missing file
    MD5: 32f90ee0ee49fbaa0e9d83c32d773d44
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-4.21.1/i386/gd-devel-1.8.4-4.21.1.i386.rpm
Missing file
    MD5: ba50f74a3c45ceb6c6994fd16dd97846
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-4.21.1/i386/gd-progs-1.8.4-4.21.1.i386.rpm
Missing file
    MD5: e6cd529cd117dc14073f011a7cf35631
 
Red Hat Enterprise Linux WS (v. 3)

IA-32:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/i386/gd-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: 0277cba330cefb9ab1ebea7f15fa32c8
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/i386/gd-devel-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: d5b6b426e2e06f02a3d0e5f3180cf33c
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/i386/gd-progs-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: a8f4b292b1ef66452790e4dd2648c7a2
 
IA-64:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/i386/gd-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: 0277cba330cefb9ab1ebea7f15fa32c8
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/ia64/gd-1.8.4-12.3.1.ia64.rpm
Missing file
    MD5: ca3b5794089578356666c672355ad71f
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/ia64/gd-devel-1.8.4-12.3.1.ia64.rpm
Missing file
    MD5: 839ca9fd43bd92ec9bcbd324954f71e5
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/ia64/gd-progs-1.8.4-12.3.1.ia64.rpm
Missing file
    MD5: 7c0174f34dbe662e8852e1ffe25d8372
 
x86_64:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/i386/gd-1.8.4-12.3.1.i386.rpm
Missing file
    MD5: 0277cba330cefb9ab1ebea7f15fa32c8
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-12.3.1/x86_64/gd-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 7cbaf334f370e69a009cc3e173bd43b2
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-12.3.1/x86_64/gd-devel-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 6e28767d002c70958e5f1f38a5420d0a
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-12.3.1/x86_64/gd-progs-1.8.4-12.3.1.x86_64.rpm
Missing file
    MD5: 003ce60cef5006f3c495aff9e767f4e2
 
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor

IA-64:
ftp://updates.redhat.com/rhn/repository/NULL/gd/1.8.4-4.21.1/ia64/gd-1.8.4-4.21.1.ia64.rpm
Missing file
    MD5: f3415f854fcc70689d9487386c5f5497
ftp://updates.redhat.com/rhn/repository/NULL/gd-devel/1.8.4-4.21.1/ia64/gd-devel-1.8.4-4.21.1.ia64.rpm
Missing file
    MD5: 3db197bc13dfc65b6debfc4e14eed791
ftp://updates.redhat.com/rhn/repository/NULL/gd-progs/1.8.4-4.21.1/ia64/gd-progs-1.8.4-4.21.1.ia64.rpm
Missing file
    MD5: a4f021b229c4b4d9710888b06fa0b57c
 

Bugs fixed (see bugzilla for more information)

137246 - CAN-2004-0990 integer overflow in PNG handling.
138808 - CAN-2004-0941 additional overflows in gd


References


Keywords

buffer, gd, gdCalloc, gdMalloc, gdRealloc, overflow


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/