Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1
purl pkg:deb/debian/graphviz@2.42.2-5%2Bdeb11u1
Next non-vulnerable version 2.42.4-3
Latest non-vulnerable version 2.42.4-3
Risk 3.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-c726-budg-fkaf
Aliases:
CVE-2023-46045
Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.
2.42.4-3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-gytk-7hp5-hkgt Multiple vulnerabilities have been found in Graphviz, the worst of which could result in the arbitrary execution of code. CVE-2020-18032

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T10:56:16.861607+00:00 Debian Importer Affected by VCID-c726-budg-fkaf https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-15T17:59:17.526954+00:00 Debian Oval Importer Fixing VCID-gytk-7hp5-hkgt https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-13T07:24:59.447662+00:00 Debian Importer Affected by VCID-c726-budg-fkaf https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:45:07.895927+00:00 Debian Oval Importer Fixing VCID-gytk-7hp5-hkgt https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T18:55:43.279555+00:00 Debian Importer Affected by VCID-c726-budg-fkaf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T17:32:26.435154+00:00 Debian Oval Importer Fixing VCID-gytk-7hp5-hkgt https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0