Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2016-7126

The imagetruecolortopalette function in ext/gd/gd.c in PHP before 5.6.25 and 7.x before 7.0.10 does not properly validate the number of colors, which allows remote attackers to cause a denial of service (select_colors allocation error and out-of-bounds write) or possibly have unspecified other impact via a large value in the third argument.

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2016090...
CONFIRM: http://www.php.net/Cha...
CONFIRM: http://www.php.net/Cha...
CONFIRM: https://bugs.php.net/b...
CONFIRM: https://github.com/php...
BID: 92755
GENTOO: GLSA-201611-22
SECTRACK: 1036680
CONFIRM: https://www.tenable.co...
REDHAT: RHSA-2016:2750
CONFIRM: https://github.com/php...

Launchpad.net

CVE 2016-7126

Related bugs

References