CVE-2016-7568 log

Source
Severity High
Remote Yes
Type Arbitrary code execution
Description
An integer overflow flaw, leading to a heap-based buffer overflow, was found in gd. A specially crafted image, when converted to webp, could cause the application to crash or potentially execute arbitrary code.
Group Package Affected Fixed Severity Status Ticket
AVG-58 php 7.0.12-2 7.0.13-1 High Fixed
Date Advisory Group Package Severity Description
18 Nov 2016 ASA-201611-19 AVG-58 php High multiple issues
References
https://bugs.php.net/bug.php?id=73003
https://github.com/libgd/libgd/issues/308
http://seclists.org/oss-sec/2016/q3/639