Libgd

Libgd

34 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2016-7568

  • EPSS 1.02%
  • Veröffentlicht 28.09.2016 20:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka libgd) through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspe...

6.5

CVE-2016-6214

  • EPSS 9.35%
  • Veröffentlicht 12.08.2016 15:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file.

6.5

CVE-2016-6207

  • EPSS 10.16%
  • Veröffentlicht 12.08.2016 15:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the _gdContributionsAlloc function in gd_interpolation.c in GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds memory write or memory consumption) via unspecified vecto...

6.5

CVE-2016-6161

  • EPSS 0.4%
  • Veröffentlicht 12.08.2016 15:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The output function in gd_gif_out.c in the GD Graphics Library (aka libgd) allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image.

6.5

CVE-2016-6132

  • EPSS 2.13%
  • Veröffentlicht 12.08.2016 15:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The gdImageCreateFromTgaCtx function in the GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file.

7.5

CVE-2016-6128

  • EPSS 19.23%
  • Veröffentlicht 07.08.2016 10:59:22
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The gdImageCropThreshold function in gd_crop.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP before 7.0.9, allows remote attackers to cause a denial of service (application crash) via an invalid color index.

8.8

CVE-2016-5767

  • EPSS 3.59%
  • Veröffentlicht 07.08.2016 10:59:14
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the gdImageCreate function in gd.c in the GD Graphics Library (aka libgd) before 2.0.34RC1, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service (heap-based ...

8.8

CVE-2016-5766

Exploit
  • EPSS 15.27%
  • Veröffentlicht 07.08.2016 10:59:13
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in the _gd2GetHeader function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service (heap-based ...

9.1

CVE-2016-5116

  • EPSS 2.73%
  • Veröffentlicht 07.08.2016 10:59:12
  • Zuletzt bearbeitet 12.04.2025 10:46:40

gd_xbm.c in the GD Graphics Library (aka libgd) before 2.2.0, as used in certain custom PHP 5.5.x configurations, allows context-dependent attackers to obtain sensitive information from process memory or cause a denial of service (stack-based buffer ...

7.6

CVE-2013-7456

Exploit
  • EPSS 1.9%
  • Veröffentlicht 07.08.2016 10:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.1.1, as used in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7, allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified ot...