Integer overflow in gd_io.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors involving the number of horizontal and vertical chunks in an image.
{ "vanir_signatures": [ { "deprecated": false, "target": { "file": "src/gd_gd2.c" }, "source": "https://github.com/libgd/libgd/commit/69d2fd2c597ffc0c217de1238b9bf4d4bceba8e6", "digest": { "line_hashes": [ "106648440201846147386893940842185842636", "118456646405056510212582140641998962289", "226848554499470190433200253314073699263", "295855378707841161551982573226769646937" ], "threshold": 0.9 }, "id": "CVE-2016-10168-7a1c7174", "signature_version": "v1", "signature_type": "Line" }, { "deprecated": false, "target": { "function": "_gd2GetHeader", "file": "src/gd_gd2.c" }, "source": "https://github.com/libgd/libgd/commit/69d2fd2c597ffc0c217de1238b9bf4d4bceba8e6", "digest": { "function_hash": "338426797981790896539239570930110931335", "length": 2693.0 }, "id": "CVE-2016-10168-f7a2ee86", "signature_version": "v1", "signature_type": "Function" } ] }