Search for packages
| purl | pkg:deb/debian/gdk-pixbuf@2.42.2%2Bdfsg-1%2Bdeb11u2 |
| Next non-vulnerable version | 2.44.6+dfsg-2 |
| Latest non-vulnerable version | 2.44.6+dfsg-2 |
| Risk | 3.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-jzz2-x2gk-8kf1
Aliases: CVE-2025-7345 |
gdk‑pixbuf: Heap‑buffer‑overflow in gdk‑pixbuf |
Affected by 1 other vulnerability. |
|
VCID-xg3j-c698-3kgu
Aliases: CVE-2025-6199 |
gdk-pixbuf: Uninitialized Memory Disclosure in GdkPixbuf GIF LZW Decoder |
Affected by 1 other vulnerability. |
|
VCID-xg6z-9vh5-pbd6
Aliases: CVE-2026-5201 |
gdk-pixbuf: gdk-pixbuf: Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image |
Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-2a49-ryer-vkhd | Out-of-bounds Write GNOME gdk-pixbuf is vulnerable to a heap-buffer overflow vulnerability when decoding the lzw compressed stream of image data in GIF files with lzw minimum code size equals `12` |
CVE-2021-44648
|
| VCID-4zm2-zv71-jfat | A vulnerability in GDK-PixBuf library could lead to a Denial of Service condition. |
CVE-2020-29385
|
| VCID-juwv-p63q-8ffy | gdk-pixbuf: heap-based buffer overflow when compositing or clearing frames in GIF files |
CVE-2021-46829
|
| VCID-pf79-yf2z-syem | Out-of-bounds Write In GNOME GdkPixbuf (aka gdk-pixbuf) through 2.42.10, the ANI (Windows animated cursor) decoder encounters heap memory corruption (in ani_load_chunk in io-ani.c) when parsing chunks in a crafted .ani file. A crafted file could allow an attacker to overwrite heap metadata, leading to a denial of service or code execution attack. This occurs in gdk_pixbuf_set_option() in gdk-pixbuf.c. |
CVE-2022-48622
|
| VCID-vcfh-3p9e-4uc3 | gdk-pixbuf: integer wraparound in the GIF loader of gdk-pixbuf via crafted input leads to segmentation fault |
CVE-2021-20240
|