CVE-2007-3478

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2007-3478
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2007-3478.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2007-3478
Downstream
Withdrawn
2026-01-27T04:07:58.558680Z
Published
2007-06-28T18:30:00Z
Modified
2026-01-27T04:07:58.558680Z
Summary
[none]
Details

Race condition in gdImageStringFTEx (gdftdrawbitmap) in gdft.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors, possibly involving truetype font (TTF) support.

References

Affected packages