CVE-2016-6911

Опубликовано: 26 янв. 2017

Источник: debian

EPSS Низкий

Описание

The dynamicGetbuf function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF image.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libgd2	fixed	2.2.3-87-gd0fec80-2		package

Примечания

Corresponds to the 0020-Fix-invalid-read-in-gdImageCreateFromTiffPtr.patch patch
https://github.com/libgd/libgd/commit/4859d69e07504d4b0a4bdf9bcb4d9e3769ca35ae

EPSS

Процентиль: 70%

0.00641

Низкий

Связанные уязвимости

CVE-2016-6911

CVSS3: 5.5

ubuntu

около 9 лет назад

The dynamicGetbuf function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF image.

CVE-2016-6911

CVSS3: 5.3

redhat

больше 9 лет назад

The dynamicGetbuf function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF image.

CVE-2016-6911

CVSS3: 5.5

nvd

около 9 лет назад

The dynamicGetbuf function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF image.

GHSA-v5f2-456f-72fv

CVSS3: 5.5

github

больше 3 лет назад

The dynamicGetbuf function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF image.

SUSE-SU-2016:2681-1

suse-cvrf

больше 9 лет назад

Security update for php53

EPSS

Процентиль: 70%

0.00641

Низкий