CVE-2016-9933 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Libgd

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-20 — Improper Input Validation11 documents9 sources

Severity

7.5HIGHNVD

OSV9.8

EPSS

11.1%

top 6.52%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Libgd

Timeline

PublishedJan 4

Latest updateMay 14

Description

Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library (aka libgd) before 2.2.2, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service (segmentation violation) via a crafted imagefilltoborder call that triggers use of a negative color value.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

▶NVDlibgd/libgd2.2.1

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-cmjx-gh93-h4cg: Stack consumption vulnerability in the gdImageFillToBorder function in gd↗2022-05-14

▶

OSV

libgd2 vulnerabilities↗2017-02-28

▶

OSV

CVE-2016-9933: Stack consumption vulnerability in the gdImageFillToBorder function in gd↗2017-01-04

▶

CVEList

CVE-2016-9933: Stack consumption vulnerability in the gdImageFillToBorder function in gd↗2017-01-04

▶

📋Vendor Advisories

Ubuntu

GD library vulnerabilities↗2017-02-28

▶

Apple

CVE-2016-9933: macOS Sierra 10.12.3↗2017-01-23

▶

Red Hat

gd: Stack overflow in gdImageFillToBorder on truecolor images↗2016-12-08

▶

Debian

CVE-2016-9933: libgd2 - Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in t...↗2016

▶

💬Community

Bugzilla

CVE-2016-9933 CVE-2016-9934 CVE-2016-9935 CVE-2016-9936 php: various flaws [fedora-all]↗2016-12-14

▶

Bugzilla

CVE-2016-9933 php, gd: Stack overflow in gdImageFillToBorder on truecolor images↗2016-12-14

▶