CVE-2015-8874: Stack overflow with gdImageFillToBorder CVE-2016-5766: Integer Overflow in _gd2GetHeader CVE-2016-5767: Integer Overflow in gdImagePaletteToTrueColor resulting in heap overflow CVE-2016-6128: Invalid color index not handled, can lead to crash CVE-2016-6132: A read out-of-bands was found in the parsing of TGA files CVE-2016-6207: Integer overflow error within _gdContributionsAlloc CVE-2016-6214: Buffer over-read issue when parsing crafted TGA file Reference: