gd: Stack overflow in gdImageFillToBorder on truecolor images

An infinite recursion flaw was found in the gdImageFillToBorder function from the gd library; also used by PHP imagefilltoborder function, when passing a negative integer as the color parameter, triggering a stack overflow. A remote attacker with ability to force a negative color identifier when...

Medium: php70

Issue Overview: The SplObjectStorage unserialize implementation in ext/spl/splobserver.c in PHP before 7.0.12 does not verify that a key is an object, which allows remote attackers to execute arbitrary code or cause a denial of service uninitialized memory access via crafted serialized data...

CVE-2016-9933

Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library aka libgd before 2.2.2, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service segmentation violation via a crafted imagefilltoborder call that...

UBUNTU-CVE-2016-9933

Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library aka libgd before 2.2.2, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service segmentation violation via a crafted imagefilltoborder call that...

openSUSE Security Update : gd (openSUSE-2016-1510)

This security update for gd fixes the following issues : - a call to gdImageFillToBorder could cause a stack overflow leading to stack exhaustion when the image used was not truecolor CVE-2016-9933 ,boo1015187 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

PHP 5.6.x < 5.6.28 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.28. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the parseurl function due to returning the incorrect host. An unauthenticated, remote attacker can exploit this to hav...