New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

gdImageScaleTwoPass() can leak memory #173

Closed
cmb69 opened this Issue Jul 13, 2015 · 2 comments

Comments

Projects
None yet
3 participants
@cmb69
Contributor

cmb69 commented Jul 13, 2015

In gdImageScaleTwoPass() a tmp_im is created with gdImageCreateTrueColor(), but later freed with gdFree() instead of gdImageDestroy(). This is likely to cause a memory leak.

See also the related downstream bug report.

@vapier vapier added the bug label Jul 20, 2015

@vapier vapier closed this in 4751b60 Aug 5, 2015

@kaplanlior

This comment has been minimized.

Show comment
Hide comment
@kaplanlior

kaplanlior commented Jul 7, 2016

Issue was assigned CVE-2015-8877. Details at https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8877

@cmb69

This comment has been minimized.

Show comment
Hide comment
@cmb69

cmb69 Jul 7, 2016

Contributor

@kaplanlior Thanks! That info is yet missing in the changelog of PHP 5.6.12 and 7.0.0.

Contributor

cmb69 commented Jul 7, 2016

@kaplanlior Thanks! That info is yet missing in the changelog of PHP 5.6.12 and 7.0.0.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment