CVE-2016-9933

Source
https://cve.org/CVERecord?id=CVE-2016-9933
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-9933.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2016-9933
Downstream
Related
Published
2017-01-04T20:59:00.480Z
Modified
2026-05-17T11:55:03.239606242Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library (aka libgd) before 2.2.2, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service (segmentation violation) via a crafted imagefilltoborder call that triggers use of a negative color value.

References

Affected packages