Search for packages
| purl | pkg:deb/debian/gdk-pixbuf@2.38.1%2Bdfsg-1 |
| Next non-vulnerable version | 2.44.6+dfsg-2 |
| Latest non-vulnerable version | 2.44.6+dfsg-2 |
| Risk | 3.6 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2a49-ryer-vkhd
Aliases: CVE-2021-44648 |
Out-of-bounds Write GNOME gdk-pixbuf is vulnerable to a heap-buffer overflow vulnerability when decoding the lzw compressed stream of image data in GIF files with lzw minimum code size equals `12` |
Affected by 3 other vulnerabilities. |
|
VCID-4zm2-zv71-jfat
Aliases: CVE-2020-29385 |
A vulnerability in GDK-PixBuf library could lead to a Denial of Service condition. |
Affected by 3 other vulnerabilities. |
|
VCID-juwv-p63q-8ffy
Aliases: CVE-2021-46829 |
gdk-pixbuf: heap-based buffer overflow when compositing or clearing frames in GIF files |
Affected by 3 other vulnerabilities. |
|
VCID-jzz2-x2gk-8kf1
Aliases: CVE-2025-7345 |
gdk‑pixbuf: Heap‑buffer‑overflow in gdk‑pixbuf |
Affected by 1 other vulnerability. |
|
VCID-pf79-yf2z-syem
Aliases: CVE-2022-48622 |
Out-of-bounds Write In GNOME GdkPixbuf (aka gdk-pixbuf) through 2.42.10, the ANI (Windows animated cursor) decoder encounters heap memory corruption (in ani_load_chunk in io-ani.c) when parsing chunks in a crafted .ani file. A crafted file could allow an attacker to overwrite heap metadata, leading to a denial of service or code execution attack. This occurs in gdk_pixbuf_set_option() in gdk-pixbuf.c. |
Affected by 3 other vulnerabilities. |
|
VCID-vcfh-3p9e-4uc3
Aliases: CVE-2021-20240 |
gdk-pixbuf: integer wraparound in the GIF loader of gdk-pixbuf via crafted input leads to segmentation fault |
Affected by 3 other vulnerabilities. |
|
VCID-xg3j-c698-3kgu
Aliases: CVE-2025-6199 |
gdk-pixbuf: Uninitialized Memory Disclosure in GdkPixbuf GIF LZW Decoder |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1ytk-9srj-zfff | gdk-pixbuf2: Integer overflow in tiff_image_parse function |
CVE-2017-2870
|
| VCID-37b2-h2nn-ufa8 | Multiple vulnerabilities have been found in GDK-PixBuf, the worst of which could result in the execution of arbitrary code. |
CVE-2017-6313
|
| VCID-4jf2-xww4-mfau | Multiple vulnerabilities have been found in GDK-PixBuf, the worst of which could result in the execution of arbitrary code. |
CVE-2017-6312
|
| VCID-7cp9-37h3-tkhq | Multiple vulnerabilities have been found in GDK-PixBuf, the worst of which could result in the execution of arbitrary code. |
CVE-2017-6314
|
| VCID-q8wp-65d8-yqcr | Multiple vulnerabilities have been found in GDK-PixBuf, the worst of which could result in the execution of arbitrary code. |
CVE-2017-6311
|
| VCID-y1sm-7uec-1bc5 | security update |
CVE-2017-2862
|
| VCID-zu3p-941y-nydy | A vulnerability has been found in GDK-PixBuf that may allow a remote attacker to execute arbitrary code. |
CVE-2017-1000422
|