11 matches found
openSUSE Security Update : gd (openSUSE-2016-1220)
This update for gd fixes the following issue : - CVE-2016-7568: Integer overflow in the gdImageWebpCtx function in gdwebp.c libgd bsc1001900. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
ALPINE-CVE-2016-7568
Integer overflow in the gdImageWebpCtx function in gdwebp.c in the GD Graphics Library aka libgd through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via crafted imagewebp and...
DEBIAN-CVE-2016-7568
Integer overflow in the gdImageWebpCtx function in gdwebp.c in the GD Graphics Library aka libgd through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via crafted imagewebp and...
Integer overflow
Integer overflow in the gdImageWebpCtx function in gdwebp.c in the GD Graphics Library aka libgd through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via crafted imagewebp and...
CVE-2016-7568
Integer overflow in the gdImageWebpCtx function in gdwebp.c in the GD Graphics Library aka libgd through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via crafted imagewebp and...
CVE-2016-7568
Integer overflow in the gdImageWebpCtx function in gdwebp.c in the GD Graphics Library aka libgd through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via crafted imagewebp and...
CVE-2016-7568
CVE-2016-7568 is a vulnerability in the GD Graphics Library (libgd/libgd2) ≤ 2.2.3, used by PHP up to 7.0.11. The flaw is an integer overflow in the gdImageWebpCtx function (gd_webp.c) that can cause a heap-based buffer overflow, enabling a remote attacker to trigger a denial of service and possi...
CVE-2016-7568
Integer overflow in the gdImageWebpCtx function in gdwebp.c in the GD Graphics Library aka libgd through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via crafted imagewebp and...
Internet Bug Bounty: PHP Integer Overflow in gdImageWebpCtx
PHP Integer Overflow in gdImageWebpCtx 1. Affected Version + PHP 7.0.10 2. Credit This vulnerability was discovered by Ke Liu of Tencent's Xuanwu LAB. 3. Testing Environments + OS: Ubuntu + PHP: 7.0.10 + Compiler: Clang + CFLAGS: -g -O0 -fsanitize=address 4. PoC 5. Vulnerability Details...
PHP gdImageWebpCtx Function Heap Overflow Vulnerability
PHP is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A heap overflow vulnerability exists in the PHP gdImageWebpCtx function, which allows remote attackers to exploit the vulnerability to execute arbitrary code...
libgd -- integer overflow which could lead to heap buffer overflow
LibGD reports: An integer overflow issue was found in function gdImageWebpCtx of file gdwebp.c which could lead to heap buffer overflow...