Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-6207

Опубликовано: 12 авг. 2016
Источник: debian
EPSS Низкий

Описание

Integer overflow in the _gdContributionsAlloc function in gd_interpolation.c in GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds memory write or memory consumption) via unspecified vectors.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libgd2fixed2.2.2-43-g22cba39-1package
libgd2not-affectedwheezypackage
php7.0fixed7.0.9-1package
php5fixed5.6.24+dfsg-1package
php5fixed5.6.24+dfsg-0+deb8u1jessiepackage
php5not-affectedwheezypackage

Примечания

  • https://github.com/libgd/libgd/commit/0dd40abd6d5b3e53a6b745dd4d6cf94b70010989

  • https://github.com/libgd/libgd/commit/d325888a9fe3c9681e4a9aad576de2c5cd5df2ef

  • https://github.com/libgd/libgd/commit/ff9113c80a32205d45205d3ea30965b25480e0fb

  • https://github.com/libgd/libgd/commit/f60ec7a546499f9446063a4dbe755be9523d8232

  • https://github.com/libgd/libgd/commit/7a28c235890c95e6010e7b0d0f7c7369367168ef

  • Fixed in 7.0.9, 5.6.24, 5.5.38

  • PHP Bug: https://bugs.php.net/bug.php?id=72558

  • Starting with 5.4.0-1 Debian uses the system copy of libgd

EPSS

Процентиль: 92%
0.08715
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2016-6207

CVSS3: 6.5
ubuntu
почти 9 лет назад

Integer overflow in the _gdContributionsAlloc function in gd_interpolation.c in GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds memory write or memory consumption) via unspecified vectors.

redhat логотип

CVE-2016-6207

CVSS3: 6.2
redhat
почти 9 лет назад

Integer overflow in the _gdContributionsAlloc function in gd_interpolation.c in GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds memory write or memory consumption) via unspecified vectors.

nvd логотип

CVE-2016-6207

CVSS3: 6.5
nvd
почти 9 лет назад

Integer overflow in the _gdContributionsAlloc function in gd_interpolation.c in GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds memory write or memory consumption) via unspecified vectors.

github логотип

GHSA-jx7w-46ch-jmcq

CVSS3: 6.5
github
около 3 лет назад

Integer overflow in the _gdContributionsAlloc function in gd_interpolation.c in GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds memory write or memory consumption) via unspecified vectors.

suse-cvrf логотип

openSUSE-SU-2016:2363-1

suse-cvrf
почти 9 лет назад

Security update for gd

EPSS

Процентиль: 92%
0.08715
Низкий