Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/gdk-pixbuf@2.42.2%2Bdfsg-1%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/gdk-pixbuf@2.42.2%2Bdfsg-1%2Bdeb11u2?distro=trixie
Next non-vulnerable version 2.42.2+dfsg-1+deb11u3
Latest non-vulnerable version 2.44.6+dfsg-2
Risk 3.4
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-xg6z-9vh5-pbd6
Aliases:
CVE-2026-5201
gdk-pixbuf: gdk-pixbuf: Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image
2.42.2+dfsg-1+deb11u5
Affected by 0 other vulnerabilities.
2.42.10+dfsg-1+deb12u3
Affected by 1 other vulnerability.
2.42.10+dfsg-1+deb12u4
Affected by 0 other vulnerabilities.
2.42.12+dfsg-4
Affected by 1 other vulnerability.
2.42.12+dfsg-4+deb13u1
Affected by 0 other vulnerabilities.
2.44.6+dfsg-1
Affected by 0 other vulnerabilities.
2.44.6+dfsg-2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (33)
Vulnerability Summary Aliases
VCID-1jyr-kac3-2ua2 The GdkPixbuf library, that is also included in GTK+ 2, contains vulnerabilities that could lead to a Denial of Service or the execution of arbitrary code. CVE-2005-2976
VCID-1ytk-9srj-zfff gdk-pixbuf2: Integer overflow in tiff_image_parse function CVE-2017-2870
VCID-2a49-ryer-vkhd Out-of-bounds Write GNOME gdk-pixbuf is vulnerable to a heap-buffer overflow vulnerability when decoding the lzw compressed stream of image data in GIF files with lzw minimum code size equals `12` CVE-2021-44648
VCID-37b2-h2nn-ufa8 Multiple vulnerabilities have been found in GDK-PixBuf, the worst of which could result in the execution of arbitrary code. CVE-2017-6313
VCID-3vjs-geuw-j7h7 The GdkPixbuf library, that is also included in GTK+ 2, contains vulnerabilities that could lead to a Denial of Service or the execution of arbitrary code. CVE-2005-2975
VCID-4jf2-xww4-mfau Multiple vulnerabilities have been found in GDK-PixBuf, the worst of which could result in the execution of arbitrary code. CVE-2017-6312
VCID-4zm2-zv71-jfat A vulnerability in GDK-PixBuf library could lead to a Denial of Service condition. CVE-2020-29385
VCID-7cp9-37h3-tkhq Multiple vulnerabilities have been found in GDK-PixBuf, the worst of which could result in the execution of arbitrary code. CVE-2017-6314
VCID-7hwy-9gdx-rya8 gdk-pixbuf: heap-based overflow caused by invalid palette size CVE-2017-12447
VCID-d5bq-uv1h-rqa8 gdk-pixbuf: GIF loader buffer overflow when initializing decompression tables CVE-2011-2897
VCID-drq5-6jps-skax Multiple vulnerabilities have been found in Firefox, Thunderbird, Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with the worst of which may allow remote execution of arbitrary code. CVE-2015-4491
VCID-ecuv-xp49-5yeh The GdkPixbuf library, that is also included in GTK+ 2, contains vulnerabilities that could lead to a Denial of Service or the execution of arbitrary code. CVE-2005-3186
VCID-epbu-y9uy-83bs security flaw CVE-2004-0782
VCID-hfkx-cat3-puf8 gdk-pixbuf: Out-of-bounds write in OneLine32() function CVE-2016-6352
VCID-juwv-p63q-8ffy gdk-pixbuf: heap-based buffer overflow when compositing or clearing frames in GIF files CVE-2021-46829
VCID-juz2-dgbr-4bd7 security flaw CVE-2005-0891
VCID-jzz2-x2gk-8kf1 gdk‑pixbuf: Heap‑buffer‑overflow in gdk‑pixbuf CVE-2025-7345
VCID-k2ph-py3f-aycu Multiple buffer overflow vulnerabilities in gdk-pixbuf may allow remote attackers to execute arbitrary code or cause Denial of Service. CVE-2015-7673
VCID-ku5p-8cre-xkee security update CVE-2015-8875
VCID-pf79-yf2z-syem Out-of-bounds Write In GNOME GdkPixbuf (aka gdk-pixbuf) through 2.42.10, the ANI (Windows animated cursor) decoder encounters heap memory corruption (in ani_load_chunk in io-ani.c) when parsing chunks in a crafted .ani file. A crafted file could allow an attacker to overwrite heap metadata, leading to a denial of service or code execution attack. This occurs in gdk_pixbuf_set_option() in gdk-pixbuf.c. CVE-2022-48622
VCID-q8wp-65d8-yqcr Multiple vulnerabilities have been found in GDK-PixBuf, the worst of which could result in the execution of arbitrary code. CVE-2017-6311
VCID-qwv5-ntpt-mbbp Multiple buffer overflow vulnerabilities in gdk-pixbuf may allow remote attackers to execute arbitrary code or cause Denial of Service. CVE-2015-7674
VCID-rzj1-83cd-4yer security update CVE-2015-7552
VCID-syr2-zvtz-f3au Multiple vulnerabilities in gdk-pixbuf may create a Denial of Service condition. CVE-2012-2370
VCID-v9xs-ur2x-jygb Multiple vulnerabilities were found in Pidgin, the worst of which allowing for the remote execution of arbitrary code. CVE-2011-2485
VCID-vcfh-3p9e-4uc3 gdk-pixbuf: integer wraparound in the GIF loader of gdk-pixbuf via crafted input leads to segmentation fault CVE-2021-20240
VCID-wrze-mrwx-nfdv security flaw CVE-2004-0111
VCID-xg3j-c698-3kgu gdk-pixbuf: Uninitialized Memory Disclosure in GdkPixbuf GIF LZW Decoder CVE-2025-6199
VCID-xg6z-9vh5-pbd6 gdk-pixbuf: gdk-pixbuf: Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image CVE-2026-5201
VCID-y1dx-tg6t-aqe4 security flaw CVE-2004-0788
VCID-y1sm-7uec-1bc5 security update CVE-2017-2862
VCID-ysbh-ym55-nkbh security flaw CVE-2004-0753
VCID-zu3p-941y-nydy A vulnerability has been found in GDK-PixBuf that may allow a remote attacker to execute arbitrary code. CVE-2017-1000422

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T12:49:10.904827+00:00 Debian Importer Fixing VCID-1ytk-9srj-zfff https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:45:53.124272+00:00 Debian Importer Fixing VCID-jzz2-x2gk-8kf1 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:28:17.133908+00:00 Debian Importer Fixing VCID-xg6z-9vh5-pbd6 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:56:24.419501+00:00 Debian Importer Fixing VCID-4jf2-xww4-mfau https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:28:31.900886+00:00 Debian Importer Fixing VCID-qwv5-ntpt-mbbp https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:23:18.543665+00:00 Debian Importer Fixing VCID-37b2-h2nn-ufa8 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:15:34.054967+00:00 Debian Importer Fixing VCID-q8wp-65d8-yqcr https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:09:03.585371+00:00 Debian Importer Fixing VCID-syr2-zvtz-f3au https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:49:42.548801+00:00 Debian Importer Fixing VCID-k2ph-py3f-aycu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:46:11.365314+00:00 Debian Importer Fixing VCID-v9xs-ur2x-jygb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:45:02.803727+00:00 Debian Importer Fixing VCID-pf79-yf2z-syem https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:23:06.699680+00:00 Debian Importer Fixing VCID-y1dx-tg6t-aqe4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:02:57.359652+00:00 Debian Importer Fixing VCID-1jyr-kac3-2ua2 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:56:04.247373+00:00 Debian Importer Fixing VCID-juwv-p63q-8ffy https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:48:01.129644+00:00 Debian Importer Fixing VCID-ysbh-ym55-nkbh https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:43:36.211504+00:00 Debian Importer Fixing VCID-wrze-mrwx-nfdv https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:34:35.569879+00:00 Debian Importer Fixing VCID-3vjs-geuw-j7h7 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:32:40.881433+00:00 Debian Importer Fixing VCID-xg3j-c698-3kgu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:30:24.567601+00:00 Debian Importer Fixing VCID-zu3p-941y-nydy https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:27:02.374120+00:00 Debian Importer Fixing VCID-4zm2-zv71-jfat https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:26:49.299143+00:00 Debian Importer Fixing VCID-7cp9-37h3-tkhq https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:23:39.710570+00:00 Debian Importer Fixing VCID-y1sm-7uec-1bc5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:23:32.474661+00:00 Debian Importer Fixing VCID-ecuv-xp49-5yeh https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:23:13.129243+00:00 Debian Importer Fixing VCID-drq5-6jps-skax https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:21:38.443682+00:00 Debian Importer Fixing VCID-rzj1-83cd-4yer https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:21:16.345483+00:00 Debian Importer Fixing VCID-ku5p-8cre-xkee https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:55:18.445657+00:00 Debian Importer Fixing VCID-d5bq-uv1h-rqa8 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:53:46.022412+00:00 Debian Importer Fixing VCID-vcfh-3p9e-4uc3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:47:52.093683+00:00 Debian Importer Fixing VCID-7hwy-9gdx-rya8 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:47:01.763746+00:00 Debian Importer Fixing VCID-juz2-dgbr-4bd7 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:46:15.143076+00:00 Debian Importer Fixing VCID-hfkx-cat3-puf8 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:45:03.137781+00:00 Debian Importer Fixing VCID-2a49-ryer-vkhd https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:43:34.715446+00:00 Debian Importer Fixing VCID-epbu-y9uy-83bs https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-14T12:17:22.006202+00:00 Debian Importer Fixing VCID-xg6z-9vh5-pbd6 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:47:46.299976+00:00 Debian Importer Fixing VCID-1ytk-9srj-zfff https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:45:15.472132+00:00 Debian Importer Fixing VCID-jzz2-x2gk-8kf1 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:08:59.346867+00:00 Debian Importer Fixing VCID-4jf2-xww4-mfau https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:49:12.457195+00:00 Debian Importer Fixing VCID-qwv5-ntpt-mbbp https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:45:20.971836+00:00 Debian Importer Fixing VCID-37b2-h2nn-ufa8 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:39:28.049270+00:00 Debian Importer Fixing VCID-q8wp-65d8-yqcr https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:34:36.820212+00:00 Debian Importer Fixing VCID-syr2-zvtz-f3au https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:19:50.497966+00:00 Debian Importer Fixing VCID-k2ph-py3f-aycu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:17:09.065590+00:00 Debian Importer Fixing VCID-v9xs-ur2x-jygb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:16:15.641827+00:00 Debian Importer Fixing VCID-pf79-yf2z-syem https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:59:51.680514+00:00 Debian Importer Fixing VCID-y1dx-tg6t-aqe4 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:44:28.689350+00:00 Debian Importer Fixing VCID-1jyr-kac3-2ua2 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:39:03.474727+00:00 Debian Importer Fixing VCID-juwv-p63q-8ffy https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:32:48.001159+00:00 Debian Importer Fixing VCID-ysbh-ym55-nkbh https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:29:27.062296+00:00 Debian Importer Fixing VCID-wrze-mrwx-nfdv https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-12T17:49:18.181992+00:00 Debian Importer Affected by VCID-xg6z-9vh5-pbd6 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:22:47.904439+00:00 Debian Importer Fixing VCID-3vjs-geuw-j7h7 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:21:48.234850+00:00 Debian Importer Fixing VCID-xg3j-c698-3kgu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:20:29.326832+00:00 Debian Importer Fixing VCID-zu3p-941y-nydy https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:18:18.258772+00:00 Debian Importer Fixing VCID-4zm2-zv71-jfat https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:18:10.005566+00:00 Debian Importer Fixing VCID-7cp9-37h3-tkhq https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:16:18.206692+00:00 Debian Importer Fixing VCID-y1sm-7uec-1bc5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:16:14.634391+00:00 Debian Importer Fixing VCID-ecuv-xp49-5yeh https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:16:02.616009+00:00 Debian Importer Fixing VCID-drq5-6jps-skax https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:15:06.869480+00:00 Debian Importer Fixing VCID-rzj1-83cd-4yer https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:14:55.114664+00:00 Debian Importer Fixing VCID-ku5p-8cre-xkee https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:59:16.883711+00:00 Debian Importer Fixing VCID-d5bq-uv1h-rqa8 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:58:10.193574+00:00 Debian Importer Fixing VCID-vcfh-3p9e-4uc3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:54:40.090971+00:00 Debian Importer Fixing VCID-7hwy-9gdx-rya8 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:53:59.758728+00:00 Debian Importer Fixing VCID-juz2-dgbr-4bd7 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:53:29.533277+00:00 Debian Importer Fixing VCID-hfkx-cat3-puf8 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:52:45.288641+00:00 Debian Importer Fixing VCID-2a49-ryer-vkhd https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:51:46.813992+00:00 Debian Importer Fixing VCID-epbu-y9uy-83bs https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:24:27.721836+00:00 Debian Importer Affected by VCID-xg6z-9vh5-pbd6 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.670137+00:00 Debian Importer Fixing VCID-jzz2-x2gk-8kf1 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.602168+00:00 Debian Importer Fixing VCID-xg3j-c698-3kgu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.534523+00:00 Debian Importer Fixing VCID-pf79-yf2z-syem https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.473091+00:00 Debian Importer Fixing VCID-juwv-p63q-8ffy https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.410532+00:00 Debian Importer Fixing VCID-2a49-ryer-vkhd https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.355715+00:00 Debian Importer Fixing VCID-vcfh-3p9e-4uc3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.304416+00:00 Debian Importer Fixing VCID-4zm2-zv71-jfat https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.247841+00:00 Debian Importer Fixing VCID-7cp9-37h3-tkhq https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.191904+00:00 Debian Importer Fixing VCID-37b2-h2nn-ufa8 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.134149+00:00 Debian Importer Fixing VCID-4jf2-xww4-mfau https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.075672+00:00 Debian Importer Fixing VCID-q8wp-65d8-yqcr https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:27.017611+00:00 Debian Importer Fixing VCID-1ytk-9srj-zfff https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.957858+00:00 Debian Importer Fixing VCID-y1sm-7uec-1bc5 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.901324+00:00 Debian Importer Fixing VCID-7hwy-9gdx-rya8 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.853643+00:00 Debian Importer Fixing VCID-zu3p-941y-nydy https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.800975+00:00 Debian Importer Fixing VCID-hfkx-cat3-puf8 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.746669+00:00 Debian Importer Fixing VCID-ku5p-8cre-xkee https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.697707+00:00 Debian Importer Fixing VCID-qwv5-ntpt-mbbp https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.648689+00:00 Debian Importer Fixing VCID-k2ph-py3f-aycu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.600006+00:00 Debian Importer Fixing VCID-rzj1-83cd-4yer https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.551124+00:00 Debian Importer Fixing VCID-drq5-6jps-skax https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.501097+00:00 Debian Importer Fixing VCID-syr2-zvtz-f3au https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.448203+00:00 Debian Importer Fixing VCID-d5bq-uv1h-rqa8 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.394905+00:00 Debian Importer Fixing VCID-v9xs-ur2x-jygb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.336289+00:00 Debian Importer Fixing VCID-ecuv-xp49-5yeh https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.279681+00:00 Debian Importer Fixing VCID-1jyr-kac3-2ua2 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.223433+00:00 Debian Importer Fixing VCID-3vjs-geuw-j7h7 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.169300+00:00 Debian Importer Fixing VCID-juz2-dgbr-4bd7 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.120325+00:00 Debian Importer Fixing VCID-y1dx-tg6t-aqe4 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.072226+00:00 Debian Importer Fixing VCID-epbu-y9uy-83bs https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:26.024198+00:00 Debian Importer Fixing VCID-ysbh-ym55-nkbh https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:24:25.969695+00:00 Debian Importer Fixing VCID-wrze-mrwx-nfdv https://security-tracker.debian.org/tracker/data/json 38.1.0