VYPR
Critical severity9.1NVD Advisory· Published Jan 19, 2016· Updated Jun 17, 2026

CVE-2016-1903

CVE-2016-1903

Description

The gdImageRotateInterpolated function in ext/gd/libgd/gd_interpolation.c in PHP before 5.5.31, 5.6.x before 5.6.17, and 7.x before 7.0.2 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a large bgd_color argument to the imagerotate function.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

32
  • PHP/PHP29 versions
    cpe:2.3:a:php:php:*:*:*:*:*:*:*:*+ 28 more
    • cpe:2.3:a:php:php:*:*:*:*:*:*:*:*range: <=5.5.30
    • cpe:2.3:a:php:php:5.6.0:alpha1:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:alpha2:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:alpha3:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:alpha4:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:alpha5:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:beta1:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:beta2:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:beta3:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:beta4:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.10:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.11:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.12:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.13:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.14:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.15:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.16:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.3:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.4:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.6:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.8:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.9:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:7.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:7.0.1:*:*:*:*:*:*:*
    • (no CPE)range: before 5.5.31, before 5.6.17, before 7.0.2

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.