Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1?distro=trixie
Next non-vulnerable version 2.42.2-8
Latest non-vulnerable version 14.1.2-1
Risk 3.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-c726-budg-fkaf
Aliases:
CVE-2023-46045
Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.
2.42.2-8
Affected by 0 other vulnerabilities.
2.42.4-3
Affected by 0 other vulnerabilities.
14.1.2-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (9)
Vulnerability Summary Aliases
VCID-5ufx-caw4-pugf buffer overflow CVE-2014-1236
VCID-bst1-9mr8-u3ab buffer overflow CVE-2014-0978
VCID-dpgy-5wh3-pubj A buffer overflow in Graphviz might lead to user-assisted execution of arbitrary code via a DOT file. CVE-2008-4555
VCID-ftef-9uwy-g3gc graphviz: NULL pointer dereference in rebuild_vlis CVE-2018-10196
VCID-gytk-7hp5-hkgt Multiple vulnerabilities have been found in Graphviz, the worst of which could result in the arbitrary execution of code. CVE-2020-18032
VCID-hn88-6rd6-auh3 security update CVE-2014-9157
VCID-j9yn-735h-mqds graphviz before 2.2.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files. NOTE: this issue was originally associated with a different CVE identifier, CVE-2005-2965, which had been used for multiple different issues. This is the correct identifier. CVE-2005-4803
VCID-u23g-vzrm-cbh3 Multiple vulnerabilities have been found in Graphviz and the extent of these vulnerabilities are unspecified. CVE-2014-1235
VCID-xzye-g5rw-fyh5 Multiple vulnerabilities have been found in GraphicsMagick, allowing remote attackers to execute arbitrary code or cause a Denial of Service condition. CVE-2009-3736

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:09:56.677020+00:00 Debian Importer Fixing VCID-j9yn-735h-mqds https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:22:03.104321+00:00 Debian Importer Fixing VCID-bst1-9mr8-u3ab https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:45:45.961893+00:00 Debian Importer Fixing VCID-hn88-6rd6-auh3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:40:28.375494+00:00 Debian Importer Fixing VCID-dpgy-5wh3-pubj https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:07:10.200112+00:00 Debian Importer Fixing VCID-gytk-7hp5-hkgt https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:50:39.167822+00:00 Debian Importer Fixing VCID-ftef-9uwy-g3gc https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:45:15.463481+00:00 Debian Importer Fixing VCID-xzye-g5rw-fyh5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:28:17.499744+00:00 Debian Importer Fixing VCID-u23g-vzrm-cbh3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:37:34.212591+00:00 Debian Importer Fixing VCID-5ufx-caw4-pugf https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:03:27.310650+00:00 Debian Importer Fixing VCID-j9yn-735h-mqds https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:44:23.841272+00:00 Debian Importer Fixing VCID-bst1-9mr8-u3ab https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:16:45.852073+00:00 Debian Importer Fixing VCID-hn88-6rd6-auh3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:13:11.423438+00:00 Debian Importer Fixing VCID-dpgy-5wh3-pubj https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:47:43.395893+00:00 Debian Importer Fixing VCID-gytk-7hp5-hkgt https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:34:50.436960+00:00 Debian Importer Fixing VCID-ftef-9uwy-g3gc https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:30:37.563793+00:00 Debian Importer Fixing VCID-xzye-g5rw-fyh5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:18:58.481308+00:00 Debian Importer Fixing VCID-u23g-vzrm-cbh3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:48:05.823457+00:00 Debian Importer Fixing VCID-5ufx-caw4-pugf https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:26:04.682018+00:00 Debian Importer Affected by VCID-c726-budg-fkaf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.651627+00:00 Debian Importer Fixing VCID-gytk-7hp5-hkgt https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.588788+00:00 Debian Importer Fixing VCID-ftef-9uwy-g3gc https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.538155+00:00 Debian Importer Fixing VCID-hn88-6rd6-auh3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.487868+00:00 Debian Importer Fixing VCID-5ufx-caw4-pugf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.439510+00:00 Debian Importer Fixing VCID-u23g-vzrm-cbh3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.390277+00:00 Debian Importer Fixing VCID-bst1-9mr8-u3ab https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.339486+00:00 Debian Importer Fixing VCID-xzye-g5rw-fyh5 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.291748+00:00 Debian Importer Fixing VCID-dpgy-5wh3-pubj https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.245156+00:00 Debian Importer Fixing VCID-j9yn-735h-mqds https://security-tracker.debian.org/tracker/data/json 38.1.0