CVE-2016-10166

Published: Mar 15, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors related to decrementing the u variable.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20170126 CVE Requests: libgd: potential unsigned onderflow, denial-of-service in gdImageCreateFromGd2Ctx and signed overflow in gd_io.c

mailing-list

x_refsource_MLIST

[oss-security] 20170128 Re: CVE Requests: libgd: potential unsigned onderflow, denial-of-service in gdImageCreateFromGd2Ctx and signed overflow in gd_io.c

mailing-list

x_refsource_MLIST

http://libgd.github.io/release-2.2.4.html

x_refsource_CONFIRM

https://github.com/libgd/libgd/commit/60bfb401ad5a4a8ae995dcd36372fe15c71e1a35

x_refsource_CONFIRM

DSA-3777

vendor-advisory

x_refsource_DEBIAN

95869

vdb-entry

x_refsource_BID

RHSA-2019:2519

vendor-advisory

x_refsource_REDHAT

RHSA-2019:3299

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-10166

Description

Affected Products

References