CVE-2016-5766

Integer overflow in the _gd2GetHeader function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via crafted chunk dimensions in an image.

Published: Aug 7, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-5766
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-190

Affected Software
References

Software	From	Fixed in
redhat / openshift	2.0	2.0.x
freebsd / freebsd	8.3	8.3.x
redhat / enterprise_linux	6.0	6.0.x
freebsd / freebsd	8.0	8.0.x
redhat / enterprise_linux	5	5.x
libgd / libgd	2.2.2	2.2.2.x
freebsd / freebsd	10.0	10.0.x
fedoraproject / fedora	23	23.x
debian / debian_linux	8.0	8.0.x
freebsd / freebsd	10.1	10.1.x
fedoraproject / fedora	24	24.x
freebsd / freebsd	8.4	8.4.x
freebsd / freebsd	9.2	9.2.x
freebsd / freebsd	8.2	8.2.x
freebsd / freebsd	8.1	8.1.x
freebsd / freebsd	9.0	9.0.x
freebsd / freebsd	10.2	10.2.x
fedoraproject / fedora	22	22.x
freebsd / freebsd	9.3	9.3.x
redhat / enterprise_linux	7.0	7.0.x
freebsd / freebsd	10.3	10.3.x
freebsd / freebsd	9.1	9.1.x

Vulnerability Database

CVE-2016-5766

Deep Security Visibility Without the Complexity