CVE-2016-6161
published 2016-08-12CVE-2016-6161: The output function in gd_gif_out.c in the GD Graphics Library (aka libgd) allows remote attackers to cause a denial of service (out-of-bounds read) via a…
PriorityP425medium6.5CVSS 3.0
AVNACLPRNUIRSUCNINAH
EPSS
2.77%
84.5th percentile
The output function in gd_gif_out.c in the GD Graphics Library (aka libgd) allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | libgd2 | < libgd2 2.2.1-1 (bookworm) | libgd2 2.2.1-1 (bookworm) |
| libgd | libgd | <= 2.2.2 | — |
| opensuse | leap | — | — |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv7.6HIGH
vendor_ubuntu7.6HIGH
vendor_debian6.5MEDIUM
vendor_redhat6.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
GD library vulnerabilities
vendor_ubuntu·2016-07-11·CVSS 7.6
CVE-2013-7456 [HIGH] GD library vulnerabilities
Title: GD library vulnerabilities
Summary: The GD library could be made to crash or run programs if it processed a
specially crafted image file.
It was discovered that the GD library incorrectly handled memory when using
gdImageScaleTwoPass(). A remote attacker could possibly use this issue to
cause a denial of service. This issue only affected Ubuntu 14.04 LTS.
(CVE-2013-7456)
It was discovered that the GD library incorrectly handled certain malformed
XBM images. If a user or automated system were tricked into processing a
specially crafted XBM image, an attacker could cause a denial of service.
This issue only affected Ubuntu 14.04 LTS, Ubuntu 15.10 and Ubuntu 16.04
LTS. (CVE-2016-5116)
It was discovered that the GD library incorrectly handled memory when using
_gd2GetHeader(). A rem
Red Hat
gd: Global out-of-bounds read when encoding gif from malformed gd2 input
vendor_redhat·2016-05-08·CVSS 6.5
CVE-2016-6161 [MEDIUM] CWE-20 gd: Global out-of-bounds read when encoding gif from malformed gd2 input
gd: Global out-of-bounds read when encoding gif from malformed gd2 input
The output function in gd_gif_out.c in the GD Graphics Library (aka libgd) allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image.
An out-of-bounds read flaw was found in gd. A maliciously crafted .gd2 file when converted to .gif could result in information disclosure from the process linking libgd.
Statement: Red Hat Product Security has rated this issue as having Moderate security
impact. This issue is not currently planned to be addressed in future
updates. For additional information, refer to the Issue Severity
Classification: https://access.redhat.com/security/updates/classification/.
Package: gd (Red Hat Enterprise Linux 5) - Will not fix
Package: php (Red Hat Enterpri
Debian
CVE-2016-6161: libgd2 - The output function in gd_gif_out.c in the GD Graphics Library (aka libgd) allow...
vendor_debian·2016·CVSS 6.5
CVE-2016-6161 [MEDIUM] CVE-2016-6161: libgd2 - The output function in gd_gif_out.c in the GD Graphics Library (aka libgd) allow...
The output function in gd_gif_out.c in the GD Graphics Library (aka libgd) allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image.
Scope: local
bookworm: resolved (fixed in 2.2.1-1)
bullseye: resolved (fixed in 2.2.1-1)
forky: resolved (fixed in 2.2.1-1)
sid: resolved (fixed in 2.2.1-1)
trixie: resolved (fixed in 2.2.1-1)
GHSA
GHSA-gq8p-8q2h-mv7w: The output function in gd_gif_out
ghsa_unreviewed·2022-05-14
CVE-2016-6161 [MEDIUM] CWE-125 GHSA-gq8p-8q2h-mv7w: The output function in gd_gif_out
The output function in gd_gif_out.c in the GD Graphics Library (aka libgd) allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image.
OSV
CVE-2016-6161: The output function in gd_gif_out
osv·2016-08-12·CVSS 6.5
CVE-2016-6161 [MEDIUM] CVE-2016-6161: The output function in gd_gif_out
The output function in gd_gif_out.c in the GD Graphics Library (aka libgd) allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image.
OSV
libgd2 vulnerabilities
osv·2016-07-11·CVSS 7.6
CVE-2013-7456 [HIGH] libgd2 vulnerabilities
libgd2 vulnerabilities
It was discovered that the GD library incorrectly handled memory when using
gdImageScaleTwoPass(). A remote attacker could possibly use this issue to
cause a denial of service. This issue only affected Ubuntu 14.04 LTS.
(CVE-2013-7456)
It was discovered that the GD library incorrectly handled certain malformed
XBM images. If a user or automated system were tricked into processing a
specially crafted XBM image, an attacker could cause a denial of service.
This issue only affected Ubuntu 14.04 LTS, Ubuntu 15.10 and Ubuntu 16.04
LTS. (CVE-2016-5116)
It was discovered that the GD library incorrectly handled memory when using
_gd2GetHeader(). A remote attacker could possibly use this issue to cause a
denial of service or possibly execute arbitrary code. (CVE-2016-5766)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2016-6161 php: gd: Global out-of-bounds read when encoding gif from malformed gd2 input [fedora-all]
bugzilla·2016-07-12·CVSS 6.5
CVE-2016-6161 [MEDIUM] CVE-2016-6161 php: gd: Global out-of-bounds read when encoding gif from malformed gd2 input [fedora-all]
CVE-2016-6161 php: gd: Global out-of-bounds read when encoding gif from malformed gd2 input [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects mult
Bugzilla
CVE-2016-6161 gd: Global out-of-bounds read when encoding gif from malformed gd2 input
bugzilla·2016-07-07·CVSS 6.5
CVE-2016-6161 [MEDIUM] CVE-2016-6161 gd: Global out-of-bounds read when encoding gif from malformed gd2 input
CVE-2016-6161 gd: Global out-of-bounds read when encoding gif from malformed gd2 input
An out-of-bounds read vulnerability in gd was found when encoding gif from malformed input with gd2togif utility.
Upstream bug:
https://github.com/libgd/libgd/issues/209
Upstream patch:
https://github.com/libgd/libgd/commit/82b80dcb70a7ca8986125ff412bceddafc896842
CVE assignment:
http://seclists.org/oss-sec/2016/q3/14
Discussion:
Created gd tracking bugs for this issue:
Affects: fedora-23 [bug 1353551]
---
CVSSv3 score adjusted based on the following reasoning:
- the flaw makes it possible for a crafted .gd2 file to read arbitrary amounts of memory when converted to .gif
- the library is often exposed (in php) to web services that process untrusted images
- such services often restrict the
Bugzilla
CVE-2016-6161 gd: Gloabal out-of-bounds read when enconding gif from malformed input with gd2togif [fedora-23]
bugzilla·2016-07-07·CVSS 6.5
CVE-2016-6161 [MEDIUM] CVE-2016-6161 gd: Gloabal out-of-bounds read when enconding gif from malformed input with gd2togif [fedora-23]
CVE-2016-6161 gd: Gloabal out-of-bounds read when enconding gif from malformed input with gd2togif [fedora-23]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
[bug automatically crea
http://lists.opensuse.org/opensuse-updates/2016-08/msg00086.htmlhttp://lists.opensuse.org/opensuse-updates/2016-09/msg00078.htmlhttp://www.debian.org/security/2016/dsa-3619http://www.openwall.com/lists/oss-security/2016/07/05/6http://www.openwall.com/lists/oss-security/2016/07/05/7http://www.ubuntu.com/usn/USN-3030-1https://github.com/libgd/libgd/issues/209http://lists.opensuse.org/opensuse-updates/2016-08/msg00086.htmlhttp://lists.opensuse.org/opensuse-updates/2016-09/msg00078.htmlhttp://www.debian.org/security/2016/dsa-3619http://www.openwall.com/lists/oss-security/2016/07/05/6http://www.openwall.com/lists/oss-security/2016/07/05/7http://www.ubuntu.com/usn/USN-3030-1https://github.com/libgd/libgd/issues/209
2016-08-12
Published