GLSA-201903-18 : GD: Multiple vulnerabilities
High Nessus Plugin ID 123424
Synopsis
The remote Gentoo host is missing one or more security-related patches.
Description
The remote host is affected by the vulnerability described in GLSA-201903-18 (GD: Multiple vulnerabilities)
Multiple vulnerabilities have been discovered in GD. Please review the CVE identifiers referenced below for details.
Impact :
A remote attacker could entice a user to process a specially crafted image, possibly resulting in execution of arbitrary code or a Denial of Service condition.
Workaround :
There is no known workaround at this time.
Solution
All GD users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/gd-2.2.5-r2'