VYPR
High severity7.5NVD Advisory· Published May 22, 2016· Updated Jun 17, 2026

CVE-2015-8877

CVE-2015-8877

Description

The gdImageScaleTwoPass function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.2.0, as used in PHP before 5.6.12, uses inconsistent allocate and free approaches, which allows remote attackers to cause a denial of service (memory consumption) via a crafted call, as demonstrated by a call to the PHP imagescale function.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

14

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.