CVE-2016-6912
critical
CVSS v3
9.8
CVSS v2
7.5
VIR risk
9.8
Description
Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via large width and height values.
Predictions
Exploit likelihood
97%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2016-6912
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2016-6912.html
Vendor advisory: cve@mitre.org — https://github.com/libgd/libgd/commit/a49feeae76d41959d85ee733925a4cf40bac61b2
Vendor advisory: cve@mitre.org — https://github.com/libgd/libgd/blob/gd-2.2.4/CHANGELOG.md
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | | |
| debian | bookworm | fixed | 2.2.4-1 |
| debian | bullseye | fixed | 2.2.4-1 |
| debian | forky | fixed | 2.2.4-1 |
| debian | sid | fixed | 2.2.4-1 |
| debian | trixie | fixed | 2.2.4-1 |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| libgd | libgd | {"endIncluding":"2.2.3"} | |
References
- http://www.debian.org/security/2017/dsa-3777
- http://www.securityfocus.com/bid/95843
- https://github.com/libgd/libgd/blob/gd-2.2.4/CHANGELOG.md
- https://github.com/libgd/libgd/commit/a49feeae76d41959d85ee733925a4cf40bac61b2
- https://www.suse.com/security/cve/CVE-2016-6912.html
- https://security-tracker.debian.org/tracker/CVE-2016-6912
CWEs
CWE-415
Verify integrity in audit chain (admin only). AS-IS.