CVE

Id
87674  
CVE No.
CVE-2016-10167  
Status
Candidate  
Description
The gdImageCreateFromGd2Ctx function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (application crash) via a crafted image file.  
Phase
Assigned (20170128)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
764694 87674 CVE-2016-10167 MLIST:[oss-security] 20170126 CVE Requests: libgd: potential unsigned onderflow, denial-of-service in gdImageCreateFromGd2Ctx and signed overflow in gd_io.c  View
764695 87674 CVE-2016-10167 URL:http://www.openwall.com/lists/oss-security/2017/01/26/1  View
764696 87674 CVE-2016-10167 MLIST:[oss-security] 20170128 Re: CVE Requests: libgd: potential unsigned onderflow, denial-of-service in gdImageCreateFromGd2Ctx and signed overflow in gd_io.c  View
764697 87674 CVE-2016-10167 URL:http://www.openwall.com/lists/oss-security/2017/01/28/6  View
764698 87674 CVE-2016-10167 CONFIRM:http://libgd.github.io/release-2.2.4.html  View
764699 87674 CVE-2016-10167 CONFIRM:https://github.com/libgd/libgd/commit/fe9ed49dafa993e3af96b6a5a589efeea9bfb36f  View
764700 87674 CVE-2016-10167 BID:95869  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
33 JVNDB-2016-000035 Aterm WF800HP におけるクロスサイトリクエストフォージェリの脆弱性 日本電気株式会社が提供する Aterm WF800HP には、クロスサイトリクエストフォージェリ (CWE-352) の脆弱性が存在します。 CVE-2016-1168 87674 4 7.1 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-000035.html  View