Integer overflow in the _gdContributionsAlloc function in gd_interpolation.c in GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds memory write or memory consumption) via unspecified vectors.
References
Configurations
History
29 Aug 2022, 20:04
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:php:php:*:*:*:*:*:*:*:* | |
References | (SUSE) http://lists.opensuse.org/opensuse-updates/2016-09/msg00078.html - Mailing List, Third Party Advisory | |
References | (BID) http://www.securityfocus.com/bid/92080 - Third Party Advisory, VDB Entry | |
References | (BUGTRAQ) http://www.securityfocus.com/archive/1/539100/100/0/threaded - Third Party Advisory, VDB Entry | |
References | (MISC) http://packetstormsecurity.com/files/138174/LibGD-2.2.2-Integer-Overflow-Denial-Of-Service.html - Third Party Advisory, VDB Entry | |
References | (SUSE) http://lists.opensuse.org/opensuse-updates/2016-08/msg00086.html - Mailing List, Third Party Advisory | |
References | (UBUNTU) http://www.ubuntu.com/usn/USN-3060-1 - Mailing List, Third Party Advisory | |
References | (CONFIRM) https://bugs.php.net/bug.php?id=72558 - Issue Tracking, Vendor Advisory | |
References | (REDHAT) http://rhn.redhat.com/errata/RHSA-2016-2750.html - Third Party Advisory | |
References | (GENTOO) https://security.gentoo.org/glsa/201612-09 - Third Party Advisory | |
First Time |
Php
Php php |
Information
Published : 2016-08-12 15:59
Updated : 2023-12-10 11:46
NVD link : CVE-2016-6207
Mitre link : CVE-2016-6207
CVE.ORG link : CVE-2016-6207
JSON object : View
Products Affected
opensuse
- leap
libgd
- libgd
php
- php
debian
- debian_linux