CVE-2016-9933 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2016-9933?

CVE-2016-9933 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2016-9933?

Check the references section above for vendor advisories and patch information. Affected products include: Libgd Libgd, Php Php.

Vulnerability Description

Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library (aka libgd) before 2.2.2, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service (segmentation violation) via a crafted imagefilltoborder call that triggers use of a negative color value.

CVSS Score

7.5

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Libgd	Libgd	2.2.1
Php	Php	<= 5.6.27

Related Weaknesses (CWE)

CWE-119

References

http://lists.opensuse.org/opensuse-updates/2016-12/msg00133.html
http://lists.opensuse.org/opensuse-updates/2016-12/msg00142.html
http://lists.opensuse.org/opensuse-updates/2017-01/msg00002.html
http://lists.opensuse.org/opensuse-updates/2017-01/msg00034.html
http://lists.opensuse.org/opensuse-updates/2017-01/msg00054.html
http://www.debian.org/security/2017/dsa-3751
http://www.openwall.com/lists/oss-security/2016/12/12/2Third Party Advisory
http://www.php.net/ChangeLog-5.phpRelease NotesVendor Advisory
http://www.php.net/ChangeLog-7.phpRelease NotesVendor Advisory
http://www.securityfocus.com/bid/94865
https://access.redhat.com/errata/RHSA-2018:1296
https://bugs.php.net/bug.php?id=72696Vendor Advisory
https://github.com/libgd/libgd/commit/77f619d48259383628c3ec4654b1ad578e9eb40ePatchVendor Advisory
https://github.com/libgd/libgd/issues/215Vendor Advisory
https://github.com/php/php-src/commit/863d37ea66d5c960db08d6f4a2cbd2518f0f80d1Vendor Advisory

FAQ

What is CVE-2016-9933?

CVE-2016-9933 is a vulnerability with a CVSS score of 7.5 (HIGH). Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library (aka libgd) before 2.2.2, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote attac...

How severe is CVE-2016-9933?

CVE-2016-9933 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-9933?

Check the references section above for vendor advisories and patch information. Affected products include: Libgd Libgd, Php Php.