Critical severity9.8NVD Advisory· Published Jan 26, 2017· Updated Jun 17, 2026
CVE-2016-6912
CVE-2016-6912
Description
Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via large width and height values.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
14- Range: <2.2.4
- osv-coords12 versionspkg:rpm/opensuse/gd&distro=openSUSE%20Tumbleweedpkg:rpm/suse/gd&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/gd&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2pkg:rpm/suse/gd&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/gd&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2pkg:rpm/suse/gd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2pkg:rpm/suse/gd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/gd&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/gd&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1pkg:rpm/suse/gd&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2pkg:rpm/suse/gd&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP1pkg:rpm/suse/gd&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP2
< 2.3.3-1.1+ 11 more
- (no CPE)range: < 2.3.3-1.1
- (no CPE)range: < 2.1.0-23.1
- (no CPE)range: < 2.1.0-23.1
- (no CPE)range: < 2.1.0-23.1
- (no CPE)range: < 2.1.0-23.1
- (no CPE)range: < 2.1.0-23.1
- (no CPE)range: < 2.1.0-23.1
- (no CPE)range: < 2.1.0-23.1
- (no CPE)range: < 2.1.0-23.1
- (no CPE)range: < 2.1.0-23.1
- (no CPE)range: < 2.1.0-23.1
- (no CPE)range: < 2.1.0-23.1
Patches
Vulnerability mechanics
References
4- github.com/libgd/libgd/blob/gd-2.2.4/CHANGELOG.mdnvdPatchRelease Notes
- github.com/libgd/libgd/commit/a49feeae76d41959d85ee733925a4cf40bac61b2nvdPatchVendor Advisory
- www.debian.org/security/2017/dsa-3777nvd
- www.securityfocus.com/bid/95843nvd
News mentions
0No linked articles in our index yet.