Vulnerability Details : CVE-2016-6905
The read_image_tga function in gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA image.
Vulnerability category: Denial of service
Products affected by CVE-2016-6905
- cpe:2.3:a:libgd:libgd:*:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-6905
0.87%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 81 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-6905
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:N/A:P |
8.6
|
2.9
|
NIST | |
6.5
|
MEDIUM | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
2.8
|
3.6
|
NIST |
CWE ids for CVE-2016-6905
-
The product reads data past the end, or before the beginning, of the intended buffer.Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-6905
-
http://www.securityfocus.com/bid/91743
libgd 'read_image_tga' Function Heap Buffer Overflow VulnerabilityThird Party Advisory;VDB Entry
-
http://www.openwall.com/lists/oss-security/2016/08/23/1
oss-security - Re: CVE Request: libgd: Out-Of-Bounds Read in function read_image_tga of gd_tga.cMailing List;Third Party Advisory
-
https://github.com/libgd/libgd/issues/248
Out-Of-Bounds Read in function read_image_tga of gd_tga.c (CVE-2016-6905) · Issue #248 · libgd/libgd · GitHubIssue Tracking;Patch
-
http://lists.opensuse.org/opensuse-updates/2016-08/msg00121.html
openSUSE-SU-2016:2203-1: moderate: Security update for gdThird Party Advisory
-
http://libgd.github.io/release-2.2.3.html
LibGD 2.2.3 release
-
https://github.com/libgd/libgd/pull/251
Fix 248 by oerdnj · Pull Request #251 · libgd/libgd · GitHubIssue Tracking;Patch
-
https://github.com/libgd/libgd/commit/01c61f8ab110a77ae64b5ca67c244c728c506f03
Proper fix for #248 · libgd/libgd@01c61f8 · GitHubIssue Tracking;Patch
-
https://github.com/libgd/libgd/commit/3c2b605d72e8b080dace1d98a6e50b46c1d12186
bug #248, fix Out-Of-Bounds Read in read_image_tga · libgd/libgd@3c2b605 · GitHubIssue Tracking;Patch
-
http://lists.opensuse.org/opensuse-updates/2016-09/msg00078.html
openSUSE-SU-2016:2363-1: moderate: Security update for gdThird Party Advisory
Jump to