CVE-2016-5116
07.08.2016, 10:59
gd_xbm.c in the GD Graphics Library (aka libgd) before 2.2.0, as used in certain custom PHP 5.5.x configurations, allows context-dependent attackers to obtain sensitive information from process memory or cause a denial of service (stack-based buffer under-read and application crash) via a long name.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| libgd | libgd | 𝑥 ≤ 2.2.1 |
| opensuse | leap | 42.1 |
| debian | debian_linux | 8.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gd |
| ||||||||||||||||||||||||||||||||||||||||||||||||
| gd-devel |
| ||||||||||||||||||||||||||||||||||||||||||||||||
| libgd3 |
|
Common Weakness Enumeration
References