PublicDateAtUSN: 2016-05-21 Candidate: CVE-2015-8877 PublicDate: 2016-05-22 01:59:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8877 http://www.php.net/ChangeLog-5.php https://ubuntu.com/security/notices/USN-2987-1 Description: The gdImageScaleTwoPass function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.2.0, as used in PHP before 5.6.12, uses inconsistent allocate and free approaches, which allows remote attackers to cause a denial of service (memory consumption) via a crafted call, as demonstrated by a call to the PHP imagescale function. Ubuntu-Description: Notes: mdeslaur> php uses the system libgd2 tyhicks> 2.1.0-3, as shipped in Trusty, has quite a different implementation for gdImageScaleTwoPass() but I believe it is still affected Bugs: https://github.com/libgd/libgd/issues/173 https://bugs.php.net/bug.php?id=70064 Priority: low Discovered-by: Assigned-to: mdeslaur CVSS: nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH] Patches_libgd2: upstream: https://github.com/libgd/libgd/commit/4751b606fa38edc456d627140898a7ec679fcc24 upstream_libgd2: released (2.2.0) precise_libgd2: not-affected (code not present) trusty_libgd2: released (2.1.0-3ubuntu0.1) trusty/esm_libgd2: released (2.1.0-3ubuntu0.1) vivid/stable-phone-overlay_libgd2: DNE vivid/ubuntu-core_libgd2: DNE wily_libgd2: released (2.1.1-4ubuntu0.15.10.1) xenial_libgd2: released (2.1.1-4ubuntu0.16.04.1) esm-infra/xenial_libgd2: released (2.1.1-4ubuntu0.16.04.1) devel_libgd2: not-affected (2.2.1-1) Patches_php5: upstream_php5: released (5.6.12) precise_php5: not-affected (uses system gd) trusty_php5: not-affected (uses system gd) trusty/esm_php5: not-affected (uses system gd) vivid/ubuntu-core_php5: DNE vivid/stable-phone-overlay_php5: DNE wily_php5: not-affected (uses system gd) xenial_php5: DNE devel_php5: DNE Patches_php7.0: upstream_php7.0: not-affected precise_php7.0: DNE trusty_php7.0: DNE trusty/esm_php7.0: DNE vivid/ubuntu-core_php7.0: DNE vivid/stable-phone-overlay_php7.0: DNE wily_php7.0: DNE xenial_php7.0: not-affected (uses system gd) esm-infra/xenial_php7.0: not-affected (uses system gd) devel_php7.0: not-affected (uses system gd)