CVE-2016-1903

2016-01-19T05:59:00
ID CVE-2016-1903
Type cve
Reporter cve@mitre.org
Modified 2018-01-05T02:30:00

Description

The gdImageRotateInterpolated function in ext/gd/libgd/gd_interpolation.c in PHP before 5.5.31, 5.6.x before 5.6.17, and 7.x before 7.0.2 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a large bgd_color argument to the imagerotate function.