CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

SUSE CVE•added 2023/02/15 5:33 a.m.•1 views

SUSE CVE-2013-7456

gdinterpolation.c in the GD Graphics Library aka libgd before 2.1.1, as used in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7, allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via a crafted image that is mishandled by...

7.6CVSS7.6AI score0.01328EPSS

Exploits1References5

SUSE CVE•added 2023/02/15 5:10 a.m.•2 views

SUSE CVE-2015-8877

The gdImageScaleTwoPass function in gdinterpolation.c in the GD Graphics Library aka libgd before 2.2.0, as used in PHP before 5.6.12, uses inconsistent allocate and free approaches, which allows remote attackers to cause a denial of service memory consumption via a crafted call, as demonstrated ...

7.5CVSS8.9AI score0.02317EPSS

Exploits1References5

RedHat Linux•added 2016/11/15 11:40 a.m.•0 views

gd: incorrect boundary adjustment in _gdContributionsCalc

7.6CVSS7.5AI score0.01328EPSS

Exploits1References4

RedHat Linux•added 2016/11/15 11:40 a.m.•3 views

gd: gdImageScaleTwoPass function in gd_interpolation.c uses inconsistent allocate and free approaches

7.5CVSS7.4AI score0.02317EPSS

Exploits1References4

OSV•added 2016/08/07 10:59 a.m.•2 views

DEBIAN-CVE-2013-7456

7.6CVSS8.5AI score0.01328EPSS

Exploits1References1

OSV•added 2016/08/07 10:59 a.m.•8 views

CVE-2013-7456

7.6CVSS8.5AI score

Exploits0References12

CVE•added 2016/08/07 10:0 a.m.•172 views

CVE-2013-7456

CVE-2013-7456 affects the GD Graphics Library (libgd) prior to 2.1.1 used by PHP up to 5.5.36, 5.6.x up to 5.6.22, and 7.x up to 7.0.7. A crafted image mishandled by imagescale can trigger an out-of-bounds read and remote denial of service (partial/possible other impact). The Cloud Foundry adviso...

7.6CVSS7.2AI score0.01328EPSS

Exploits1References12Affected Software1

Debian CVE•added 2016/08/07 10:0 a.m.•30 views

CVE-2013-7456

7.6CVSS9.3AI score0.01328EPSS

Exploits1

Hacker One•added 2016/07/25 6:46 p.m.•30 views

Internet Bug Bounty: gdImageTrueColorToPaletteBody allows arbitrary write/read access

Upstream bug report ================ 2016-06-29 04:03 UTC https://bugs.php.net/bug.php?id=72512 Patch ===== 2016-07-19 07:47 UTC http://git.php.net/?p=php-src.git;a=commit;h=928aecc002e906b309b28f0062f03d4e5eda3e45 Fixed for PHP 5.5 security only mode, PHP 5.6, PHP 7.0...

7AI score

Exploits0

Mageia•added 2016/06/02 9:40 p.m.•48 views

Updated libgd packages fix security vulnerabilities

Updated libgd packages fix security vulnerabilities: The gdImageScaleTwoPass function in gdinterpolation.c in libgd before 2.2.0 uses inconsistent allocate and free approaches, which allows remote attackers to cause a denial of service memory consumption via a crafted call, as demonstrated by a...

9.1CVSS7.3AI score0.02396EPSS

Exploits1References3

OSV•added 2016/05/27 12:0 a.m.•0 views

UBUNTU-CVE-2013-7456

7.6CVSS7.2AI score0.01328EPSS

Exploits1References4

Hacker One•added 2016/05/26 2:35 p.m.•17 views

Internet Bug Bounty: imagescale out-of-bounds read

https://bugs.php.net/bug.php?id=72227 Invalid memory access while applying bicubic scaling on images. Reading symbols from /home/user/php-7.0/sapi/cli/php...done. gdb b gdinterpolation.c:890 Breakpoint 1 at 0x81925a9: file /home/user/php-7.0/ext/gd/libgd/gdinterpolation.c, line 890. gdb b...

6.9AI score

Exploits0

FreeBSD•added 2016/05/26 12:0 a.m.•57 views

php -- multiple vulnerabilities

The PHP Group reports: Core: Fixed bug 72114 Integer underflow / arbitrary null write in fread/gzread. CVE-2016-5096 PHP 5.5/5.6 only Fixed bug 72135 Integer Overflow in phphtmlentities. CVE-2016-5094 PHP 5.5/5.6 only GD: Fixed bug 72227 imagescale out-of-bounds read. CVE-2013-7456 Intl: Fixed bu...

8.8CVSS7.6AI score0.07576EPSS

Exploits4References3

Debian CVE•added 2016/05/22 1:0 a.m.•37 views

CVE-2015-8877

7.5CVSS7.7AI score0.02317EPSS

Exploits1