Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2016-10166

Published: 15/03/2017 Updated: 04/11/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Libgd

Vulnerability Summary

Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics Library (aka libgd) prior to 2.2.4 allows remote malicious users to have unspecified impact via vectors related to decrementing the u variable.

Vulnerable Product Search on Vulmon Subscribe to Product

libgd libgd

Vendor Advisories

Ubuntu Security Notice: libgd2 vulnerabilities
The GD library could be made to crash or run programs if it processed a specially crafted image file ...
Red Hat: Moderate: rh-php71-php security, bug fix, and enhancement update
Synopsis Moderate: rh-php71-php security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for rh-php71-php is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerabilit ...
Red Hat: Critical: rh-php72-php security update
Synopsis Critical: rh-php72-php security update Type/Severity Security Advisory: Critical Topic An update for rh-php72-php is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scoring System (CVSS) ba ...
Debian Security Advisories: DSA-3777-1 libgd2 -- security update
Multiple vulnerabilities have been discovered in libgd2, a library for programmatic graphics creation and manipulation, which may result in denial of service or potentially the execution of arbitrary code if a malformed file is processed For the stable distribution (jessie), these problems have been fixed in version 210-5+deb8u9 For the testing ...
Red Hat: CVE-2016-10166
Integer underflow in the _gdContributionsAlloc function in gd_interpolationc in the GD Graphics Library (aka libgd) before 224 allows remote attackers to have unspecified impact via vectors related to decrementing the u variable ...

References

CWE-191https://github.com/libgd/libgd/commit/60bfb401ad5a4a8ae995dcd36372fe15c71e1a35http://www.securityfocus.com/bid/95869http://www.openwall.com/lists/oss-security/2017/01/28/6http://www.openwall.com/lists/oss-security/2017/01/26/1http://libgd.github.io/release-2.2.4.htmlhttp://www.debian.org/security/2017/dsa-3777https://access.redhat.com/errata/RHSA-2019:2519https://access.redhat.com/errata/RHSA-2019:3299https://usn.ubuntu.com/3213-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook