Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/graphviz@2.42.2-7%2Bdeb12u1?distro=trixie
Next non-vulnerable version 2.42.2-8
Latest non-vulnerable version 14.1.2-1
Risk 3.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-c726-budg-fkaf
Aliases:
CVE-2023-46045
Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.
2.42.2-8
Affected by 0 other vulnerabilities.
2.42.4-3
Affected by 0 other vulnerabilities.
14.1.2-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (9)
Vulnerability Summary Aliases
VCID-5ufx-caw4-pugf buffer overflow CVE-2014-1236
VCID-bst1-9mr8-u3ab buffer overflow CVE-2014-0978
VCID-dpgy-5wh3-pubj A buffer overflow in Graphviz might lead to user-assisted execution of arbitrary code via a DOT file. CVE-2008-4555
VCID-ftef-9uwy-g3gc graphviz: NULL pointer dereference in rebuild_vlis CVE-2018-10196
VCID-gytk-7hp5-hkgt Multiple vulnerabilities have been found in Graphviz, the worst of which could result in the arbitrary execution of code. CVE-2020-18032
VCID-hn88-6rd6-auh3 security update CVE-2014-9157
VCID-j9yn-735h-mqds graphviz before 2.2.1 allows local users to overwrite arbitrary files via a symlink attack on temporary files. NOTE: this issue was originally associated with a different CVE identifier, CVE-2005-2965, which had been used for multiple different issues. This is the correct identifier. CVE-2005-4803
VCID-u23g-vzrm-cbh3 Multiple vulnerabilities have been found in Graphviz and the extent of these vulnerabilities are unspecified. CVE-2014-1235
VCID-xzye-g5rw-fyh5 Multiple vulnerabilities have been found in GraphicsMagick, allowing remote attackers to execute arbitrary code or cause a Denial of Service condition. CVE-2009-3736

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:09:56.683094+00:00 Debian Importer Fixing VCID-j9yn-735h-mqds https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:22:03.111252+00:00 Debian Importer Fixing VCID-bst1-9mr8-u3ab https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:45:45.969378+00:00 Debian Importer Fixing VCID-hn88-6rd6-auh3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:40:28.380488+00:00 Debian Importer Fixing VCID-dpgy-5wh3-pubj https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:07:10.206748+00:00 Debian Importer Fixing VCID-gytk-7hp5-hkgt https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:50:39.173996+00:00 Debian Importer Fixing VCID-ftef-9uwy-g3gc https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:45:15.470243+00:00 Debian Importer Fixing VCID-xzye-g5rw-fyh5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:28:17.506033+00:00 Debian Importer Fixing VCID-u23g-vzrm-cbh3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:37:34.219005+00:00 Debian Importer Fixing VCID-5ufx-caw4-pugf https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:03:27.317241+00:00 Debian Importer Fixing VCID-j9yn-735h-mqds https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:44:23.855980+00:00 Debian Importer Fixing VCID-bst1-9mr8-u3ab https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:16:45.858975+00:00 Debian Importer Fixing VCID-hn88-6rd6-auh3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:13:11.428777+00:00 Debian Importer Fixing VCID-dpgy-5wh3-pubj https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:47:43.402232+00:00 Debian Importer Fixing VCID-gytk-7hp5-hkgt https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:34:50.444295+00:00 Debian Importer Fixing VCID-ftef-9uwy-g3gc https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:30:37.570421+00:00 Debian Importer Fixing VCID-xzye-g5rw-fyh5 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:18:58.487936+00:00 Debian Importer Fixing VCID-u23g-vzrm-cbh3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:48:05.830400+00:00 Debian Importer Fixing VCID-5ufx-caw4-pugf https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:26:04.686171+00:00 Debian Importer Affected by VCID-c726-budg-fkaf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.634360+00:00 Debian Importer Fixing VCID-gytk-7hp5-hkgt https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.571404+00:00 Debian Importer Fixing VCID-ftef-9uwy-g3gc https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.520846+00:00 Debian Importer Fixing VCID-hn88-6rd6-auh3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.471520+00:00 Debian Importer Fixing VCID-5ufx-caw4-pugf https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.422314+00:00 Debian Importer Fixing VCID-u23g-vzrm-cbh3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.372763+00:00 Debian Importer Fixing VCID-bst1-9mr8-u3ab https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.322194+00:00 Debian Importer Fixing VCID-xzye-g5rw-fyh5 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.276938+00:00 Debian Importer Fixing VCID-dpgy-5wh3-pubj https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:26:04.227006+00:00 Debian Importer Fixing VCID-j9yn-735h-mqds https://security-tracker.debian.org/tracker/data/json 38.1.0