CVE-2013-7226

Name	CVE-2013-7226
Description	Integer overflow in the gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an imagecrop function call with a large x dimension value, leading to a heap-based buffer overflow.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version
php5	source	squeeze	(not affected)
php5	source	wheezy	(not affected)
php5	source	(unstable)	5.5.9+dfsg-1

Notes

[wheezy] - php5 <not-affected> (Vulnerable code was introduced in 5.5.0)
[squeeze] - php5 <not-affected> (Vulnerable code was introduced in 5.5.0)
https://bugs.php.net/bug.php?id=66356
http://www.php.net/manual/en/function.imagecrop.php