CVE-2016-1903 (retired)

Priority
Description
The gdImageRotateInterpolated function in ext/gd/libgd/gd_interpolation.c
in PHP before 5.5.31, 5.6.x before 5.6.17, and 7.x before 7.0.2 allows
remote attackers to obtain sensitive information or cause a denial of
service (out-of-bounds read and application crash) via a large bgd_color
argument to the imagerotate function.
Notes
 mdeslaur> php uses the system libgd2, patches added to php packages have
 mdeslaur> no effect.
 mdeslaur> introduced by https://github.com/php/php-src/commit/07e52857b5f7a65c1552628e14a8a6aeeea24508
 mdeslaur> in php. Looks like a php-specific issue, not in libgd2.
Assigned-to
mdeslaur
Package
Upstream:needs-triage
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (code not present)
Package
Upstream:released (7.0.2-1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (7.0.2-1)
More Information

Updated: 2019-09-19 15:57:13 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)