Christoph M. Becker

5 exploits Active since Sep 2016
CVE-2016-7568 WRITEUP CRITICAL WRITEUP
Libgd < 2.2.3 - Integer Overflow
Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka libgd) through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted imagewebp and imagedestroy calls.
CVSS 9.8
CVE-2016-8670 WRITEUP CRITICAL WRITEUP
GD Graphics Library <2.2.3 - DoS
Integer signedness error in the dynamicGetbuf function in gd_io_dp.c in the GD Graphics Library (aka libgd) through 2.2.3, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a crafted imagecreatefromstring call.
CVSS 9.8
CVE-2016-9933 WRITEUP HIGH WRITEUP
Libgd - Memory Corruption
Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library (aka libgd) before 2.2.2, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service (segmentation violation) via a crafted imagefilltoborder call that triggers use of a negative color value.
CVSS 7.5
CVE-2019-6978 WRITEUP CRITICAL WRITEUP
LibGD 2.2.5 - Use After Free
The GD Graphics Library (aka LibGD) 2.2.5 has a double free in the gdImage*Ptr() functions in gd_gif_out.c, gd_jpeg.c, and gd_wbmp.c. NOTE: PHP is unaffected.
CVSS 9.8
CVE-2019-6978 WRITEUP CRITICAL WRITEUP
LibGD 2.2.5 - Use After Free
The GD Graphics Library (aka LibGD) 2.2.5 has a double free in the gdImage*Ptr() functions in gd_gif_out.c, gd_jpeg.c, and gd_wbmp.c. NOTE: PHP is unaffected.
CVSS 9.8