Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka libgd) up to and including 2.2.3, as used in PHP up to and including 7.0.11, allows remote malicious users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted imagewebp and imagedestroy calls.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libgd libgd |
||
php php |
||
debian debian linux 8.0 |