[SECURITY] [DLA 804-1] libgd2 security update

2017-01-2910:06:25

lists.debian.org

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

78.1%

JSON

Package : libgd2
Version : 2.0.36~rc1~dfsg-6.1+deb7u8
CVE ID : CVE-2016-9317 CVE-2016-10167 CVE-2016-10168

Multiple security issues have been found in the GD Graphics Library.
They may lead to the execution of arbitrary code or causing
application crash.

CVE-2016-9317

Signed integer overflow in gd_io.c

CVE-2016-10167

Improper handling of issing image data can cause crash

CVE-2016-10168

GD2 stores the number of horizontal and vertical chunks as words
(i.e. 2 byte unsigned). These values are multiplied and assigned to
an int when reading the image, what can cause integer overflows.

For Debian 7 "Wheezy", these problems have been fixed in version
2.0.36~rc1~dfsg-6.1+deb7u8.

We recommend that you upgrade your libgd2 packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

OSVersionArchitecturePackageVersionFilename
Debian8s390xphp5-sqlite< 5.6.30+dfsg-0+deb8u1php5-sqlite_5.6.30+dfsg-0+deb8u1_s390x.deb
Debian8i386php5-ldap< 5.6.30+dfsg-0+deb8u1php5-ldap_5.6.30+dfsg-0+deb8u1_i386.deb
Debian8arm64php5-pgsql< 5.6.30+dfsg-0+deb8u1php5-pgsql_5.6.30+dfsg-0+deb8u1_arm64.deb
Debian8mipselphp5-intl< 5.6.30+dfsg-0+deb8u1php5-intl_5.6.30+dfsg-0+deb8u1_mipsel.deb
Debian8kfreebsd-i386php5-recode< 5.6.30+dfsg-0+deb8u1php5-recode_5.6.30+dfsg-0+deb8u1_kfreebsd-i386.deb
Debian8ppc64elphp5-snmp< 5.6.30+dfsg-0+deb8u1php5-snmp_5.6.30+dfsg-0+deb8u1_ppc64el.deb
Debian8mipslibgd2-xpm-dev< 2.1.0-5+deb8u9libgd2-xpm-dev_2.1.0-5+deb8u9_mips.deb
Debian8amd64libapache2-mod-php5filter< 5.6.30+dfsg-0+deb8u1libapache2-mod-php5filter_5.6.30+dfsg-0+deb8u1_amd64.deb
Debian8armhflibgd2-noxpm-dev< 2.1.0-5+deb8u9libgd2-noxpm-dev_2.1.0-5+deb8u9_armhf.deb
Debian8powerpcphp5-interbase< 5.6.30+dfsg-0+deb8u1php5-interbase_5.6.30+dfsg-0+deb8u1_powerpc.deb

OS	Version	Architecture	Package	Version	Filename
Debian	8	s390x	php5-sqlite	< 5.6.30+dfsg-0+deb8u1	php5-sqlite_5.6.30+dfsg-0+deb8u1_s390x.deb
Debian	8	i386	php5-ldap	< 5.6.30+dfsg-0+deb8u1	php5-ldap_5.6.30+dfsg-0+deb8u1_i386.deb
Debian	8	arm64	php5-pgsql	< 5.6.30+dfsg-0+deb8u1	php5-pgsql_5.6.30+dfsg-0+deb8u1_arm64.deb
Debian	8	mipsel	php5-intl	< 5.6.30+dfsg-0+deb8u1	php5-intl_5.6.30+dfsg-0+deb8u1_mipsel.deb
Debian	8	kfreebsd-i386	php5-recode	< 5.6.30+dfsg-0+deb8u1	php5-recode_5.6.30+dfsg-0+deb8u1_kfreebsd-i386.deb
Debian	8	ppc64el	php5-snmp	< 5.6.30+dfsg-0+deb8u1	php5-snmp_5.6.30+dfsg-0+deb8u1_ppc64el.deb
Debian	8	mips	libgd2-xpm-dev	< 2.1.0-5+deb8u9	libgd2-xpm-dev_2.1.0-5+deb8u9_mips.deb
Debian	8	amd64	libapache2-mod-php5filter	< 5.6.30+dfsg-0+deb8u1	libapache2-mod-php5filter_5.6.30+dfsg-0+deb8u1_amd64.deb
Debian	8	armhf	libgd2-noxpm-dev	< 2.1.0-5+deb8u9	libgd2-noxpm-dev_2.1.0-5+deb8u9_armhf.deb
Debian	8	powerpc	php5-interbase	< 5.6.30+dfsg-0+deb8u1	php5-interbase_5.6.30+dfsg-0+deb8u1_powerpc.deb