GD: Multiple vulnerabilities Multiple vulnerabilities have been found in GD, the worst of which could result in the remote execution of arbitrary code. gd 2019-03-28 2019-03-28 664732 679702 local, remote 2.2.5-r2 2.2.5-r2

GD is a graphic library for fast image creation.

Multiple vulnerabilities have been discovered in GD. Please review the CVE identifiers referenced below for details.

A remote attacker could entice a user to process a specially crafted image, possibly resulting in execution of arbitrary code or a Denial of Service condition.

There is no known workaround at this time.

All GD users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=media-libs/gd-2.2.5-r2" CVE-2018-1000222 CVE-2018-5711 CVE-2019-6977 CVE-2019-6978 BlueKnight b-man