[3.1] gd: Integer overflow in function gdImageWebpCtx of gd_webp.c (CVE-2016-7568)
Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD
Graphics Library
(aka libgd) through 2.2.3, allows remote attackers to cause a denial of
service (heap-based buffer
overflow) or possibly have unspecified other impact via crafted
imagewebp and imagedestroy calls.
References:
http://seclists.org/oss-sec/2016/q3/639
https://github.com/libgd/libgd/issues/308
Patch:
https://github.com/libgd/libgd/commit/40bec0f38f50e8510f5bb71a82f516d46facde03
(from redmine: issue id 6346, created on 2016-10-13, closed on 2016-12-15)
- Relations:
- parent #6341 (closed)