CVE-2016-10168

Published: Mar 15, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

Integer overflow in gd_io.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors involving the number of horizontal and vertical chunks in an image.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20170126 CVE Requests: libgd: potential unsigned onderflow, denial-of-service in gdImageCreateFromGd2Ctx and signed overflow in gd_io.c

mailing-list

x_refsource_MLIST

[oss-security] 20170128 Re: CVE Requests: libgd: potential unsigned onderflow, denial-of-service in gdImageCreateFromGd2Ctx and signed overflow in gd_io.c

mailing-list

x_refsource_MLIST

RHSA-2018:1296

vendor-advisory

x_refsource_REDHAT

https://github.com/libgd/libgd/commit/69d2fd2c597ffc0c217de1238b9bf4d4bceba8e6

x_refsource_CONFIRM

http://libgd.github.io/release-2.2.4.html

x_refsource_CONFIRM

https://github.com/libgd/libgd/issues/354

x_refsource_CONFIRM

DSA-3777

vendor-advisory

x_refsource_DEBIAN

95869

vdb-entry

x_refsource_BID

1037659

vdb-entry

x_refsource_SECTRACK

RHSA-2017:3221

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-10168

Description

Affected Products

References