CVE-2016-6912
Description
Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via large width and height values.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.883
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| GD Graphics Library (USN-3030-1) libgd2-xpm_2.0.36~rc1~dfsg-6ubuntu2.4_i386.deb | Linux |
| GD Graphics Library (USN-3030-1) libgd2-xpm_2.0.36~rc1~dfsg-6ubuntu2.4_amd64.deb | Linux |
| GD Graphics Library (USN-3030-1) libgd2-noxpm_2.0.36~rc1~dfsg-6ubuntu2.4_i386.deb | Linux |
| GD Graphics Library (USN-3030-1) libgd2-noxpm_2.0.36~rc1~dfsg-6ubuntu2.4_amd64.deb | Linux |
| GD Graphics Library (USN-3410-1) libgd3_2.2.1-1ubuntu3.3_i386.deb | Linux |
| GD Graphics Library (USN-3410-1) libgd3_2.2.1-1ubuntu3.3_amd64.deb | Linux |
| GD Graphics Library (USN-3213-1) libgd3_2.2.1-1ubuntu3.3_i386.deb | Linux |
| GD Graphics Library (USN-3213-1) libgd3_2.2.1-1ubuntu3.3_amd64.deb | Linux |
| GD Graphics Library (USN-3213-1) libgd2-xpm_2.0.36~rc1~dfsg-6ubuntu2.4_i386.deb | Linux |
| GD Graphics Library (USN-3213-1) libgd2-xpm_2.0.36~rc1~dfsg-6ubuntu2.4_amd64.deb | Linux |
| GD Graphics Library (USN-3213-1) libgd2-noxpm_2.0.36~rc1~dfsg-6ubuntu2.4_i386.deb | Linux |
| GD Graphics Library (USN-3213-1) libgd2-noxpm_2.0.36~rc1~dfsg-6ubuntu2.4_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234