Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.8
CVSSv3

CVE-2016-5767

Published: 07/08/2016 Updated: 05/01/2018
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Libgd

Vulnerability Summary

Integer overflow in the gdImageCreate function in gd.c in the GD Graphics Library (aka libgd) prior to 2.0.34RC1, as used in PHP prior to 5.5.37, 5.6.x prior to 5.6.23, and 7.x prior to 7.0.8, allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted image dimensions.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

libgd libgd

Vendor Advisories

Red Hat: Moderate: rh-php56 security, bug fix, and enhancement update
Synopsis Moderate: rh-php56 security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for rh-php56, rh-php56-php, and rh-php56-php-pear is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Mo ...
Amazon Linux AMI: ALAS-2016-728
A stack consumption vulnerability in GD in PHP allows remote attackers to cause a denial of service via a crafted imagefilltoborder call (CVE-2015-8874) An integer overflow, leading to a heap-based buffer overflow was found in the imagecreatefromgd2() function of PHP's gd extension A remote attacker could use this flaw to crash a PHP application ...
Red Hat: CVE-2016-5767
An integer overflow flaw, leading to a heap-based buffer overflow was found in the gdImagePaletteToTrueColor() function of PHP's gd extension A remote attacker could use this flaw to crash a PHP application or execute arbitrary code with the privileges of the user running that PHP application using gd via a specially crafted image buffer ...

References

CWE-190https://bugs.php.net/bug.php?id=72446http://php.net/ChangeLog-7.phphttp://php.net/ChangeLog-5.phphttp://www.openwall.com/lists/oss-security/2016/06/23/4http://github.com/php/php-src/commit/c395c6e5d7e8df37a21265ff76e48fe75ceb5ae6?w=1https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05240731http://lists.opensuse.org/opensuse-updates/2016-08/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-07/msg00004.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-08/msg00025.htmlhttp://www.securityfocus.com/bid/91395http://rhn.redhat.com/errata/RHSA-2016-2750.htmlhttp://rhn.redhat.com/errata/RHSA-2016-2598.htmlhttps://access.redhat.com/errata/RHSA-2016:2750https://nvd.nist.govhttps://alas.aws.amazon.com/ALAS-2016-728.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120CVE-2024-35921CVE-2024-35874brute forceCVE-2024-36080unprivilegedCVE-2024-35917IDORCVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook