CVE-2016-6128 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2016-6128?

CVE-2016-6128 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2016-6128?

Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Opensuse Leap, Libgd Libgd, Php Php, Canonical Ubuntu Linux.

Vulnerability Description

The gdImageCropThreshold function in gd_crop.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP before 7.0.9, allows remote attackers to cause a denial of service (application crash) via an invalid color index.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Debian	Debian Linux	8.0
Opensuse	Leap	42.1
Libgd	Libgd	<= 2.2.2
Php	Php	>= 5.6.0, <= 5.6.24
Canonical	Ubuntu Linux	12.04

Related Weaknesses (CWE)

CWE-20

References

http://lists.opensuse.org/opensuse-updates/2016-08/msg00086.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-updates/2016-09/msg00078.htmlMailing ListThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2750.htmlThird Party Advisory
http://www.debian.org/security/2016/dsa-3619Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/06/30/1Mailing ListThird Party Advisory
http://www.securityfocus.com/bid/91509Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1036276Third Party AdvisoryVDB Entry
http://www.ubuntu.com/usn/USN-3030-1Third Party Advisory
https://bugs.php.net/72494Issue TrackingPermissions Required
https://github.com/libgd/libgd/commit/1ccfe21e14c4d18336f9da8515cd17db88c3de61Issue TrackingPatchThird Party Advisory
https://github.com/libgd/libgd/commit/6ff72ae40c7c20ece939afb362d98cc37f4a1c96Issue TrackingThird Party Advisory
https://libgd.github.io/release-2.2.3.htmlRelease NotesThird Party Advisory
https://security.gentoo.org/glsa/201612-09Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2016-08/msg00086.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-updates/2016-09/msg00078.htmlMailing ListThird Party Advisory

FAQ

What is CVE-2016-6128?

CVE-2016-6128 is a vulnerability with a CVSS score of 7.5 (HIGH). The gdImageCropThreshold function in gd_crop.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP before 7.0.9, allows remote attackers to cause a denial of service (application crash...

How severe is CVE-2016-6128?

CVE-2016-6128 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-6128?

Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Opensuse Leap, Libgd Libgd, Php Php, Canonical Ubuntu Linux.