Search for vulnerabilities
Vulnerability details: VCID-shyf-r48n-aaac
Vulnerability ID VCID-shyf-r48n-aaac
Aliases CVE-2016-3074
Summary Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflow.
Status Published
Exploitability 2.0
Weighted Severity 8.8
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-681 Incorrect Conversion between Numeric Types
CWE-122 Heap-based Buffer Overflow
System Score Found at
generic_textual Medium http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-3074.html
rhas Moderate https://access.redhat.com/errata/RHSA-2016:2750
epss 0.25194 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.25194 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.29334 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.46160 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.46160 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.46160 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.46160 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.46160 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.46160 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.46160 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.46160 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.46160 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.54243 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.55086 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.60215 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
epss 0.60834 https://api.first.org/data/v1/epss?cve=CVE-2016-3074
rhbs medium https://bugzilla.redhat.com/show_bug.cgi?id=1321893
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7456
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3074
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4537
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4538
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4539
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4540
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4541
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4542
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4543
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4544
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5093
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5094
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5095
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5096
cvssv2 5.1 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2 7.5 https://nvd.nist.gov/vuln/detail/CVE-2016-3074
cvssv3 9.8 https://nvd.nist.gov/vuln/detail/CVE-2016-3074
cvssv3.1 9.8 https://nvd.nist.gov/vuln/detail/CVE-2016-3074
generic_textual Medium https://ubuntu.com/security/notices/USN-2987-1
Reference id Reference type URL
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183263.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-May/183724.html
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00031.html
http://packetstormsecurity.com/files/136757/libgd-2.1.1-Signedness.html
http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-3074.html
http://rhn.redhat.com/errata/RHSA-2016-2750.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3074.json
https://api.first.org/data/v1/epss?cve=CVE-2016-3074
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7456
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3074
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4537
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4538
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4539
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4540
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4541
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4542
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4543
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4544
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5093
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5094
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5095
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5096
http://seclists.org/fulldisclosure/2016/Apr/72
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://github.com/libgd/libgd/commit/2bb97f407c1145c850416a3bfbcc8cf124e68a19
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05240731
https://security.gentoo.org/glsa/201607-04
https://security.gentoo.org/glsa/201611-22
https://ubuntu.com/security/notices/USN-2987-1
https://www.exploit-db.com/exploits/39736/
http://www.debian.org/security/2016/dsa-3556
http://www.debian.org/security/2016/dsa-3602
http://www.securityfocus.com/archive/1/538160/100/0/threaded
http://www.securityfocus.com/bid/87087
http://www.securitytracker.com/id/1035659
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.383127
http://www.ubuntu.com/usn/USN-2987-1
1321893 https://bugzilla.redhat.com/show_bug.cgi?id=1321893
822242 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=822242
cpe:2.3:a:libgd:libgd:2.1.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:libgd:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:php:php:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
CVE-2016-3074 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/39736.txt
CVE-2016-3074 https://nvd.nist.gov/vuln/detail/CVE-2016-3074
RHSA-2016:2750 https://access.redhat.com/errata/RHSA-2016:2750
USN-2987-1 https://usn.ubuntu.com/2987-1/
Data source Exploit-DB
Date added April 26, 2016
Description libgd 2.1.1 - Signedness Heap Overflow
Ransomware campaign use Unknown
Source publication date April 26, 2016
Exploit type remote
Platform linux
Source update date April 26, 2016
Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2016-3074
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2016-3074
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2016-3074
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.96681
EPSS Score 0.25194
Published At Dec. 19, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.