EUVD-2016-6701

Integer overflow in the gd2GetHeader function in gdgd2.c in the GD Graphics Library aka libgd before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly ha...

EUVD-2016-7062

The gdImageCropThreshold function in gdcrop.c in the GD Graphics Library aka libgd before 2.2.3, as used in PHP before 7.0.9, allows remote attackers to cause a denial of service application crash via an invalid color index...

CVE-2016-5116

gdxbm.c in the GD Graphics Library aka libgd before 2.2.0, as used in certain custom PHP 5.5.x configurations, allows context-dependent attackers to obtain sensitive information from process memory or cause a denial of service stack-based buffer under-read and application crash via a long name...

CVE-2016-6128

The gdImageCropThreshold function in gdcrop.c in the GD Graphics Library aka libgd before 2.2.3, as used in PHP before 7.0.9, allows remote attackers to cause a denial of service application crash via an invalid color index...

CVE-2016-6128

CVE-2016-6128 affects the GD Graphics Library (libgd), specifically the gdImageCropThreshold function in gd_crop.c, with vulnerable pre-2.2.3 releases used by PHP prior to 7.0.9. Exploitation can cause an application crash (denial of service) via an invalid color index. Public advisories and vend...

CVE-2016-5766

Integer overflow in the gd2GetHeader function in gdgd2.c in the GD Graphics Library aka libgd before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly ha...

CVE-2016-5766

Integer overflow in the gd2GetHeader function in gdgd2.c in the GD Graphics Library aka libgd before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly ha...

CVE-2013-7456

gdinterpolation.c in the GD Graphics Library aka libgd before 2.1.1, as used in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7, allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a crafted image that is mishandled by...

CVE-2016-5766

Integer overflow in the gd2GetHeader function in gdgd2.c in the GD Graphics Library aka libgd before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly ha...

CVE-2016-6128

The gdImageCropThreshold function in gdcrop.c in the GD Graphics Library aka libgd before 2.2.3, as used in PHP before 7.0.9, allows remote attackers to cause a denial of service application crash via an invalid color index...

CVE-2016-5116

The CVE applies to the GD Graphics Library (libgd) prior to version 2.2.0, used in certain PHP 5.5.x configurations. The flaw in gd_xbm.c allows a long XBM image name to read process memory or trigger a stack-based buffer under-read, causing potential information disclosure or denial of service. ...

CVE-2016-5116

gdxbm.c in the GD Graphics Library aka libgd before 2.2.0, as used in certain custom PHP 5.5.x configurations, allows context-dependent attackers to obtain sensitive information from process memory or cause a denial of service stack-based buffer under-read and application crash via a long name...

CVE-2016-5116

gdxbm.c in the GD Graphics Library aka libgd before 2.2.0, as used in certain custom PHP 5.5.x configurations, allows context-dependent attackers to obtain sensitive information from process memory or cause a denial of service stack-based buffer under-read and application crash via a long name...

CVE-2016-5767

Integer overflow in the gdImageCreate function in gd.c in the GD Graphics Library aka libgd before 2.0.34RC1, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly...

Libgd2 Integer Overflow Vulnerability

libgd2 also known as GD Graphics Library or libgd is an American software developer Thomas Boutell developed an open source library for dynamically creating images . An integer overflow vulnerability exists in the gdContributionsAlloc function in the libgd2 file, which can be exploited by a remot...

CVE-2016-6207

Integer overflow in the gdContributionsAlloc function in gdinterpolation.c in GD Graphics Library aka libgd before 2.2.3 allows remote attackers to cause a denial of service out-of-bounds memory write or memory consumption via unspecified vectors...

PHP 5.6.x < 5.6.24 Multiple Vulnerabilities (httpoxy)

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.24. It is, therefore, affected by multiple vulnerabilities : - A man-in-the-middle vulnerability exists, known as 'httpoxy', due to a failure to properly resolve namespace conflicts in accordance wi...

PHP 5.5.x < 5.5.38 Multiple Vulnerabilities (httpoxy)

According to its banner, the version of PHP running on the remote web server is 5.5.x prior to 5.5.38. It is, therefore, affected by multiple vulnerabilities : - A Segfault condition occurs when accessing nvarcharmax defined columns. CVE-2015-8879 - A man-in-the-middle vulnerability exists, known...

PHP < 5.6.24, 7.x <= 7.0.8 Multiple Vulnerabilities (Jul 2016) - Linux

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

[SECURITY] Fedora 24 Update: gd-2.2.3-1.fc24

The gd graphics library allows your code to quickly draw images complete with lines, arcs, text, multiple colors, cut and paste from other images, and flood fills, and to write out the result as a PNG or JPEG file. This is particularly useful in Web applications, where PNG and JPEG are two of the...