CVE-2016-5766
- Source
- https://cve.org/CVERecord?id=CVE-2016-5766
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-5766.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2016-5766
- Downstream
- Related
- Published
- 2016-08-07T10:59:13.663Z
- Modified
- 2026-04-16T06:19:58.954439403Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Integer overflow in the gd2GetHeader function in gdgd2.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via crafted chunk dimensions in an image.
- References
-
- http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00025.html
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05240731
- http://lists.opensuse.org/opensuse-updates/2016-08/msg00003.html
- http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00004.html
- https://libgd.github.io/release-2.2.3.html
- https://security.gentoo.org/glsa/201612-09
- http://php.net/ChangeLog-7.php
- http://rhn.redhat.com/errata/RHSA-2016-2750.html
- http://www.openwall.com/lists/oss-security/2016/06/23/4
- http://www.ubuntu.com/usn/USN-3030-1
- http://rhn.redhat.com/errata/RHSA-2016-2598.html
- http://php.net/ChangeLog-5.php
- http://www.debian.org/security/2016/dsa-3619
- http://github.com/php/php-src/commit/7722455726bec8c53458a32851d2a87982cf0eac?w=1
- https://bugs.php.net/bug.php?id=72339
Affected packages
Git / github.com/libgd/libgd
Affected ranges
- Type
- GIT
- Repo
- https://github.com/libgd/libgd
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "2.2.2" } ] }
- Type
- GIT
- Repo
- https://github.com/php/php-src
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedFixed
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "2.0" }, { "introduced": "0" }, { "last_affected": "8.3" }, { "introduced": "0" }, { "last_affected": "8.0" }, { "introduced": "0" }, { "last_affected": "8.0" }, { "introduced": "0" }, { "last_affected": "8.4" }, { "introduced": "0" }, { "last_affected": "8.2" }, { "introduced": "0" }, { "last_affected": "8.1" }, { "introduced": "0" }, { "last_affected": "10.2" }, { "introduced": "0" }, { "last_affected": "7.0" } ] }
Affected versions
Other
BEFORE_SAPIFICATION_FEB_10_2000
GD_1_3_0
GD_1_4_0
GD_1_5_0
GD_1_6_0
GD_1_6_1
GD_1_6_2
GD_1_6_3
GD_1_7_0
GD_1_7_1
GD_1_7_2
GD_1_7_3
GD_1_8_0
GD_1_8_1
GD_1_8_3
GD_1_8_4
GD_2_0_0
GD_2_0_1
GD_2_0_10
GD_2_0_11
GD_2_0_12
GD_2_0_13
GD_2_0_14
GD_2_0_15
GD_2_0_17
GD_2_0_18
GD_2_0_19
GD_2_0_2
GD_2_0_20
GD_2_0_21
GD_2_0_22
GD_2_0_23
GD_2_0_24
GD_2_0_25
GD_2_0_26
GD_2_0_27
GD_2_0_28
GD_2_0_29
GD_2_0_3
GD_2_0_30
GD_2_0_31
GD_2_0_32
GD_2_0_33
GD_2_0_34RC1
GD_2_0_4
GD_2_0_5
GD_2_0_6
GD_2_0_7
GD_2_0_8
GD_2_0_9
POST_64BIT_BRANCH_MERGE
POST_AST_MERGE
POST_PHP7_NSAPI_REMOVAL
POST_PHP7_REMOVALS
POST_PHPNG_MERGE
PRE_64BIT_BRANCH_MERGE
PRE_AST_MERGE
PRE_PHP7_EREG_MYSQL_REMOVALS
PRE_PHP7_NSAPI_REMOVAL
PRE_PHP7_REMOVALS
RELEASE_2_0_0
security-audit-2024
gd-2.*
gd-2.1.0
gd-2.1.0-alpha1
gd-2.1.0-rc1
gd-2.1.1
gd-2.2.0
gd-2.2.1
gd-2.2.2
php-7.*
php-7.0.0
php-7.0.0RC1
php-7.0.0RC2
php-7.0.0RC3
php-7.0.0RC4
php-7.0.0RC5
php-7.0.0RC6
php-7.0.0RC7
php-7.0.0RC8
php-7.0.0alpha1
php-7.0.0alpha2
php-7.0.0beta1
php-7.0.0beta2
php-7.0.0beta3
php-8.*
php-8.0.0
php-8.1.0
php-8.2.0
php-8.3.0
php-8.4.0
Database specific
vanir_signatures_modified
"2026-04-11T04:02:30Z"
vanir_signatures
[
{
"id": "CVE-2016-5766-3e6237a7",
"target": {
"file": "ext/gd/libgd/gd_gd2.c"
},
"deprecated": false,
"digest": {
"line_hashes": [
"183820387990733455444215637150999073887",
"18021834238201414578949441055038262345",
"334593034626459571743002698430345110480",
"26461974233900450150030247144867305325",
"311283463863000022992454365625253102445",
"161485522429828841158027215741124660130",
"296161358142553532313520047422480048852",
"222587787824174595950097709248827618808",
"264774293065332262917206835414693640688"
],
"threshold": 0.9
},
"signature_type": "Line",
"source": "https://github.com/php/php-src/commit/7722455726bec8c53458a32851d2a87982cf0eac",
"signature_version": "v1"
},
{
"id": "CVE-2016-5766-a4bb7314",
"target": {
"file": "ext/gd/libgd/gd_gd2.c",
"function": "_gd2GetHeader"
},
"deprecated": false,
"digest": {
"function_hash": "339190344963408527699679556574785110748",
"length": 2569.0
},
"signature_type": "Function",
"source": "https://github.com/php/php-src/commit/7722455726bec8c53458a32851d2a87982cf0eac",
"signature_version": "v1"
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-5766.json"
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "6.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "5"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "10.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "23"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "10.1"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "24"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "9.2"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "9.0"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "22"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "9.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "10.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "9.1"
}
]
}
]