mahara-contributors team mailing list archive

Thread
Date

[Bug 784978] Re: Potential DoS attack by running large images through GD

To: mahara-contributors@xxxxxxxxxxxxxxxxxxx
From: François Marier <francois@xxxxxxxxxx>
Date: Thu, 03 Nov 2011 22:15:11 -0000
Reply-to: Bug 784978 <784978@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Changed in: mahara
       Status: In Progress => Fix Released

** Visibility changed to: Public

-- 
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
https://bugs.launchpad.net/bugs/784978

Title:
  Potential DoS attack by running large images through GD

Status in Mahara ePortfolio:
  Fix Released
Status in Mahara 1.4 series:
  Fix Released

Bug description:
  When resizing images to create icons, etc., gd's imagecreatefrompng,
  etc., functions are called without checking the image size.  This can
  gobble lots of memory when the images are large, because gd can
  allocate memory without respecting the php memory limit.

To manage notifications about this bug go to:
https://bugs.launchpad.net/mahara/+bug/784978/+subscriptions