VulnerableCode Package Details - pkg:deb/debian/libgd2@2.3.3-9

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-g3zj-r8ag-a7ej	read_header_tga in gd_tga.c in the GD Graphics Library (aka LibGD) through 2.3.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file.	CVE-2021-38115
VCID-qqe4-4aja-j7dz	gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) through 2.3.2 has a double free. NOTE: the vendor's position is "The GD2 image format is a proprietary image format of libgd. It has to be regarded as being obsolete, and should only be used for development and testing purposes.	CVE-2021-40145
VCID-s83u-wk4f-wkfd	The GD Graphics Library (aka LibGD) through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks.	CVE-2021-40812

Vulnerability

Summary

Aliases

VCID-g3zj-r8ag-a7ej

read_header_tga in gd_tga.c in the GD Graphics Library (aka LibGD) through 2.3.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file.

CVE-2021-38115

VCID-qqe4-4aja-j7dz

gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) through 2.3.2 has a double free. NOTE: the vendor's position is "The GD2 image format is a proprietary image format of libgd. It has to be regarded as being obsolete, and should only be used for development and testing purposes.

CVE-2021-40145

VCID-s83u-wk4f-wkfd

The GD Graphics Library (aka LibGD) through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks.

CVE-2021-40812

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:26:51.235713+00:00	Debian Oval Importer	Fixing	VCID-qqe4-4aja-j7dz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:39:06.727328+00:00	Debian Oval Importer	Fixing	VCID-g3zj-r8ag-a7ej	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:27:35.785908+00:00	Debian Oval Importer	Fixing	VCID-s83u-wk4f-wkfd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:00:16.895702+00:00	Debian Oval Importer	Fixing	VCID-qqe4-4aja-j7dz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:23:38.301986+00:00	Debian Oval Importer	Fixing	VCID-g3zj-r8ag-a7ej	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:14:05.833181+00:00	Debian Oval Importer	Fixing	VCID-s83u-wk4f-wkfd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:31:46.407730+00:00	Debian Oval Importer	Fixing	VCID-qqe4-4aja-j7dz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:09:35.724735+00:00	Debian Oval Importer	Fixing	VCID-g3zj-r8ag-a7ej	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:02:48.255426+00:00	Debian Oval Importer	Fixing	VCID-s83u-wk4f-wkfd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0