Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2016-9933

Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library (aka libgd) before 2.2.2, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service (segmentation violation) via a crafted imagefilltoborder call that triggers use of a negative color value.

Published

2017-01-04T20:59:00.480

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-119

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	libgd	libgd	2.2.1	Yes
Application	php	php	≤ 5.6.27	No
Application	php	php	7.0.0	No
Application	php	php	7.0.1	No
Application	php	php	7.0.2	No
Application	php	php	7.0.3	No
Application	php	php	7.0.4	No
Application	php	php	7.0.5	No
Application	php	php	7.0.6	No
Application	php	php	7.0.7	No
Application	php	php	7.0.8	No
Application	php	php	7.0.9	No
Application	php	php	7.0.10	No
Application	php	php	7.0.11	No

References

http://lists.opensuse.org/opensuse-updates/2016-12/msg00133.html ([email protected])
http://lists.opensuse.org/opensuse-updates/2016-12/msg00142.html ([email protected])
http://lists.opensuse.org/opensuse-updates/2017-01/msg00002.html ([email protected])
http://lists.opensuse.org/opensuse-updates/2017-01/msg00034.html ([email protected])
http://lists.opensuse.org/opensuse-updates/2017-01/msg00054.html ([email protected])
http://www.debian.org/security/2017/dsa-3751 ([email protected])
http://www.openwall.com/lists/oss-security/2016/12/12/2 Third Party Advisory ([email protected])
http://www.php.net/ChangeLog-5.php Release Notes, Vendor Advisory ([email protected])
http://www.php.net/ChangeLog-7.php Release Notes, Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/94865 ([email protected])
https://access.redhat.com/errata/RHSA-2018:1296 ([email protected])
https://bugs.php.net/bug.php?id=72696 Vendor Advisory ([email protected])
https://github.com/libgd/libgd/commit/77f619d48259383628c3ec4654b1ad578e9eb40e Patch, Vendor Advisory ([email protected])
https://github.com/libgd/libgd/issues/215 Vendor Advisory ([email protected])
https://github.com/php/php-src/commit/863d37ea66d5c960db08d6f4a2cbd2518f0f80d1 Vendor Advisory ([email protected])
http://lists.opensuse.org/opensuse-updates/2016-12/msg00133.html (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2016-12/msg00142.html (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2017-01/msg00002.html (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2017-01/msg00034.html (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2017-01/msg00054.html (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2017/dsa-3751 (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2016/12/12/2 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.php.net/ChangeLog-5.php Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.php.net/ChangeLog-7.php Release Notes, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/94865 (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:1296 (af854a3a-2127-422b-91ae-364da2661108)
https://bugs.php.net/bug.php?id=72696 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/libgd/libgd/commit/77f619d48259383628c3ec4654b1ad578e9eb40e Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/libgd/libgd/issues/215 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/php/php-src/commit/863d37ea66d5c960db08d6f4a2cbd2518f0f80d1 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)