Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflow.
{
"unresolved_ranges": [
{
"extracted_events": [
{
"introduced": "12.04"
},
{
"last_affected": "12.04"
},
{
"introduced": "14.04"
},
{
"last_affected": "14.04"
},
{
"introduced": "15.10"
},
{
"last_affected": "15.10"
},
{
"introduced": "16.04"
},
{
"last_affected": "16.04"
}
],
"source": "CPE_STRING",
"vendor_product": "canonical:ubuntu_linux",
"cpes": [
"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*",
"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*",
"cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*",
"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*"
]
},
{
"extracted_events": [
{
"introduced": "7.0"
},
{
"last_affected": "7.0"
},
{
"introduced": "8.0"
},
{
"last_affected": "8.0"
}
],
"source": "CPE_STRING",
"vendor_product": "debian:debian_linux",
"cpes": [
"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*"
]
},
{
"extracted_events": [
{
"introduced": "23"
},
{
"last_affected": "23"
},
{
"introduced": "24"
},
{
"last_affected": "24"
}
],
"source": "CPE_STRING",
"vendor_product": "fedoraproject:fedora",
"cpes": [
"cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*",
"cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*"
]
},
{
"extracted_events": [
{
"introduced": "13.2"
},
{
"last_affected": "13.2"
}
],
"source": "CPE_STRING",
"vendor_product": "opensuse:opensuse",
"cpes": [
"cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*"
]
}
]
}"2026-07-08T12:41:24Z"
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-3074.json"
[
{
"id": "CVE-2016-3074-081b5b6d",
"digest": {
"function_hash": "163878100595225240009372061331328833043",
"length": 2523.0
},
"signature_version": "v1",
"signature_type": "Function",
"source": "https://github.com/libgd/libgd/commit/2bb97f407c1145c850416a3bfbcc8cf124e68a19",
"deprecated": false,
"target": {
"function": "_gd2GetHeader",
"file": "src/gd_gd2.c"
}
},
{
"id": "CVE-2016-3074-8c2aa4db",
"digest": {
"line_hashes": [
"308632048764262319325349404959904373833",
"156654908032796698564829210861782091210",
"87643980687445443250260216682085309841",
"74748855092100787267051943652936968299"
],
"threshold": 0.9
},
"signature_version": "v1",
"signature_type": "Line",
"source": "https://github.com/libgd/libgd/commit/2bb97f407c1145c850416a3bfbcc8cf124e68a19",
"deprecated": false,
"target": {
"file": "src/gd_gd2.c"
}
}
]
{
"source": "CPE_RANGE",
"cpe": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*",
"extracted_events": [
{
"introduced": "5.5.0"
},
{
"fixed": "5.5.35"
},
{
"introduced": "5.6.0"
},
{
"fixed": "5.6.21"
},
{
"introduced": "7.0.0"
},
{
"fixed": "7.0.6"
}
]
}