VulnerableCode Package Details - pkg:deb/debian/graphicsmagick@1.4~hg15873-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-am38-b487-k7bn	In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping (which is not available beyond 8-bits/sample), and therefore lacks indexes initialization.	CVE-2018-20189
VCID-qtv6-ta8r-pka7	In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows attackers to cause a denial of service via a crafted image file, because the number of rows or columns can exceed the pixel-dimension restrictions of the TGA specification.	CVE-2018-20184

Vulnerability

Summary

Aliases

VCID-am38-b487-k7bn

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping (which is not available beyond 8-bits/sample), and therefore lacks indexes initialization.

CVE-2018-20189

VCID-qtv6-ta8r-pka7

In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows attackers to cause a denial of service via a crafted image file, because the number of rows or columns can exceed the pixel-dimension restrictions of the TGA specification.

CVE-2018-20184

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-01T23:18:53.882166+00:00	Debian Importer	Fixing	VCID-qtv6-ta8r-pka7	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-01T22:26:00.295659+00:00	Debian Importer	Fixing	VCID-am38-b487-k7bn	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-04-16T09:19:05.650056+00:00	Debian Importer	Fixing	VCID-qtv6-ta8r-pka7	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:55:55.288350+00:00	Debian Importer	Fixing	VCID-am38-b487-k7bn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-11T18:13:30.246543+00:00	Debian Importer	Fixing	VCID-qtv6-ta8r-pka7	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:59:37.546471+00:00	Debian Importer	Fixing	VCID-am38-b487-k7bn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:26:01.772388+00:00	Debian Importer	Fixing	VCID-am38-b487-k7bn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:26:01.672881+00:00	Debian Importer	Fixing	VCID-qtv6-ta8r-pka7	https://security-tracker.debian.org/tracker/data/json	38.1.0