CVE-2016-6912
Name
CVE-2016-6912
Description
Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via large width and height values.
NVD Severity
unknown
Other trackers
CVE
,
NVD
,
CERT
,
CVE Details
,
CIRCL
,
Arch Linux
,
Debian
,
Red Hat
,
Ubuntu
,
Gentoo
,
SUSE (Bugzilla)
,
SUSE (CVE)
,
Mageia
Mailing lists
oss-security
,
full-disclosure
,
bugtraq
Exploits
Exploit DB
,
Metasploit
Forges
GitHub (
code
,
issues
), Aports (
code
,
issues
)
References
Type
URI
cve@mitre.org
http://www.debian.org/security/2017/dsa-3777
cve@mitre.org
http://www.securityfocus.com/bid/95843
Patch
https://github.com/libgd/libgd/blob/gd-2.2.4/CHANGELOG.md
Patch
https://github.com/libgd/libgd/commit/a49feeae76d41959d85ee733925a4cf40bac61b2
Match rules
CPE URI
Source package
Min version
Max version
cpe:2.3:a:libgd:libgd:*:*:*:*:*:*:*:*
libgd
>= None
<= 2.2.3
Vulnerable and fixed packages
Source package
Branch
Version
Maintainer
Status
