Vulnerability Details CVE-2016-10168
Integer overflow in gd_io.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors involving the number of horizontal and vertical chunks in an image.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.4%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
- http://libgd.github.io/release-2.2.4.html
- http://www.debian.org/security/2017/dsa-3777
- http://www.openwall.com/lists/oss-security/2017/01/26/1
- http://www.openwall.com/lists/oss-security/2017/01/28/6
- http://www.securityfocus.com/bid/95869
- http://www.securitytracker.com/id/1037659
- https://access.redhat.com/errata/RHSA-2017:3221
- https://access.redhat.com/errata/RHSA-2018:1296
- https://github.com/libgd/libgd/commit/69d2fd2c597ffc0c217de1238b9bf4d4bceba8e6
- https://github.com/libgd/libgd/issues/354
- http://libgd.github.io/release-2.2.4.html
- http://www.debian.org/security/2017/dsa-3777
- http://www.openwall.com/lists/oss-security/2017/01/26/1
- http://www.openwall.com/lists/oss-security/2017/01/28/6
- http://www.securityfocus.com/bid/95869
- http://www.securitytracker.com/id/1037659
- https://access.redhat.com/errata/RHSA-2017:3221
- https://access.redhat.com/errata/RHSA-2018:1296
- https://github.com/libgd/libgd/commit/69d2fd2c597ffc0c217de1238b9bf4d4bceba8e6
- https://github.com/libgd/libgd/issues/354
Products affected by CVE-2016-10168
-
cpe:2.3:a:libgd:libgd:1.3.0
-
cpe:2.3:a:libgd:libgd:1.4.0
-
cpe:2.3:a:libgd:libgd:1.5.0
-
cpe:2.3:a:libgd:libgd:1.6.0
-
cpe:2.3:a:libgd:libgd:1.6.1
-
cpe:2.3:a:libgd:libgd:1.6.2
-
cpe:2.3:a:libgd:libgd:1.6.3
-
cpe:2.3:a:libgd:libgd:1.7.0
-
cpe:2.3:a:libgd:libgd:1.7.1
-
cpe:2.3:a:libgd:libgd:1.7.2
-
cpe:2.3:a:libgd:libgd:1.7.3
-
cpe:2.3:a:libgd:libgd:1.8.0
-
cpe:2.3:a:libgd:libgd:1.8.1
-
cpe:2.3:a:libgd:libgd:1.8.3
-
cpe:2.3:a:libgd:libgd:1.8.4
-
cpe:2.3:a:libgd:libgd:2.0.0
-
cpe:2.3:a:libgd:libgd:2.0.1
-
cpe:2.3:a:libgd:libgd:2.0.10
-
cpe:2.3:a:libgd:libgd:2.0.11
-
cpe:2.3:a:libgd:libgd:2.0.12
-
cpe:2.3:a:libgd:libgd:2.0.13
-
cpe:2.3:a:libgd:libgd:2.0.14
-
cpe:2.3:a:libgd:libgd:2.0.15
-
cpe:2.3:a:libgd:libgd:2.0.17
-
cpe:2.3:a:libgd:libgd:2.0.18
-
cpe:2.3:a:libgd:libgd:2.0.19
-
cpe:2.3:a:libgd:libgd:2.0.2
-
cpe:2.3:a:libgd:libgd:2.0.20
-
cpe:2.3:a:libgd:libgd:2.0.21
-
cpe:2.3:a:libgd:libgd:2.0.22
-
cpe:2.3:a:libgd:libgd:2.0.23
-
cpe:2.3:a:libgd:libgd:2.0.24
-
cpe:2.3:a:libgd:libgd:2.0.25
-
cpe:2.3:a:libgd:libgd:2.0.26
-
cpe:2.3:a:libgd:libgd:2.0.27
-
cpe:2.3:a:libgd:libgd:2.0.28
-
cpe:2.3:a:libgd:libgd:2.0.29
-
cpe:2.3:a:libgd:libgd:2.0.3
-
cpe:2.3:a:libgd:libgd:2.0.30
-
cpe:2.3:a:libgd:libgd:2.0.31
-
cpe:2.3:a:libgd:libgd:2.0.32
-
cpe:2.3:a:libgd:libgd:2.0.33
-
cpe:2.3:a:libgd:libgd:2.0.34
-
cpe:2.3:a:libgd:libgd:2.0.4
-
cpe:2.3:a:libgd:libgd:2.0.5
-
cpe:2.3:a:libgd:libgd:2.0.6
-
cpe:2.3:a:libgd:libgd:2.0.7
-
cpe:2.3:a:libgd:libgd:2.0.8
-
cpe:2.3:a:libgd:libgd:2.0.9
-
cpe:2.3:a:libgd:libgd:2.1.0
-
cpe:2.3:a:libgd:libgd:2.1.1
-
cpe:2.3:a:libgd:libgd:2.2.0
-
cpe:2.3:a:libgd:libgd:2.2.1
-
cpe:2.3:a:libgd:libgd:2.2.2
-
cpe:2.3:a:libgd:libgd:2.2.3