CVE-2019-6977 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.8 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 99%

Affected Products (NVD)

Vendor	Product	Version
libgd	libgd	2.2.5
php	php	𝑥 < 5.6.40
php	php	7.0.0 ≤ 𝑥 < 7.1.26
php	php	7.2.0 ≤ 𝑥 < 7.2.14
php	php	7.3.0
debian	debian_linux	8.0
debian	debian_linux	9.0
canonical	ubuntu_linux	14.04
canonical	ubuntu_linux	16.04
canonical	ubuntu_linux	18.04
canonical	ubuntu_linux	18.10
netapp	storage_automation_store	*

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

libgd2

bookworm	2.3.3-9 fixed
bullseye	2.3.0-2 fixed
sid	2.3.3-12 fixed
trixie	2.3.3-12 fixed

Ubuntu Releases

Ubuntu Product

Codename

libgd2

bionic	Fixed 2.2.5-4ubuntu0.3 released
cosmic	Fixed 2.2.5-4ubuntu1.1 released
trusty	Fixed 2.1.0-3ubuntu0.11 released
xenial	Fixed 2.1.1-4ubuntu0.16.04.11 released

php5

bionic	dne
cosmic	dne
trusty	not-affected
xenial	dne

php7.0

bionic	dne
cosmic	dne
trusty	dne
xenial	not-affected

php7.2

bionic	not-affected
cosmic	not-affected
trusty	dne
xenial	dne

php7.3

bionic	dne
cosmic	dne
trusty	dne
xenial	dne

Known Exploits!

Common Weakness Enumeration

CWE-787 - Out-of-bounds Write
The software writes data past the end, or before the beginning, of the intended buffer.

References

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00025.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00031.html

http://packetstormsecurity.com/files/152459/PHP-7.2-imagecolormatch-Out-Of-Band-Heap-Write.html

http://php.net/ChangeLog-5.php

http://php.net/ChangeLog-7.php

http://www.securityfocus.com/bid/106731

https://access.redhat.com/errata/RHSA-2019:2519

https://access.redhat.com/errata/RHSA-2019:3299

https://bugs.php.net/bug.php?id=77270

https://lists.debian.org/debian-lts-announce/2019/01/msg00028.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3WRUPZVT2MWFUEMVGTRAGDOBHLNMGK5R/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEYUUOW75YD3DENIPYMO263E6NL2NFHI/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TTXSLRZI5BCQT3H5KALG3DHUWUMNPDX2/

https://security.gentoo.org/glsa/201903-18

https://security.netapp.com/advisory/ntap-20190315-0003/

https://usn.ubuntu.com/3900-1/

https://www.debian.org/security/2019/dsa-4384

https://www.exploit-db.com/exploits/46677/

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00025.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00031.html

http://packetstormsecurity.com/files/152459/PHP-7.2-imagecolormatch-Out-Of-Band-Heap-Write.html

http://php.net/ChangeLog-5.php

http://php.net/ChangeLog-7.php

http://www.securityfocus.com/bid/106731

https://access.redhat.com/errata/RHSA-2019:2519

https://access.redhat.com/errata/RHSA-2019:3299

https://bugs.php.net/bug.php?id=77270

https://lists.debian.org/debian-lts-announce/2019/01/msg00028.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CZ2QADQTKRHTGB2AHD7J4QQNDLBEMM6/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3WRUPZVT2MWFUEMVGTRAGDOBHLNMGK5R/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEYUUOW75YD3DENIPYMO263E6NL2NFHI/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TTXSLRZI5BCQT3H5KALG3DHUWUMNPDX2/

https://security.gentoo.org/glsa/201903-18

https://security.netapp.com/advisory/ntap-20190315-0003/

https://usn.ubuntu.com/3900-1/

https://www.debian.org/security/2019/dsa-4384

https://www.exploit-db.com/exploits/46677/