VulnerableCode Package Details - pkg:deb/debian/netpbm-free@0?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-5wj4-5xbm-wuaz	Buffer overflow in pamtofits of NetPBM 10.30 through 10.33 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code when assembling the header, possibly related to an off-by-one error.	CVE-2006-3145
VCID-8fjp-kfqu-x7da	netpbm: Out-of-bounds write in writeRasterPbm() function	CVE-2017-2581
VCID-8x21-r48h-affp	netpbm: Insufficient size check of memory allocation in createCanvas() function	CVE-2017-2587
VCID-932v-xwug-nbfy	Multiple memory management errors in JasPer might lead to execution of arbitrary code via jpeg2k files.	CVE-2008-3520
VCID-ma8q-csum-fqa9	pamperspective in Netpbm before 10.35.48 does not properly calculate a window height, which allows context-dependent attackers to cause a denial of service (crash) via a crafted image file that triggers an out-of-bounds read.	CVE-2008-4799
VCID-q4qe-yn6z-nqhk	netpbm: Out-of-bounds read in expandCodeOntoStack()	CVE-2017-2579
VCID-qxkx-jxqj-8yhb	netpbm: heap-buffer-overflow in pm_mallocarray2 function in lib/util/mallocvar.c	CVE-2018-8975
VCID-rhmk-vmzk-hybk	netpbm: Calls TIFFRGBA with width and height parameters switched	CVE-2017-5849
VCID-tqtm-achn-z3fg	Multiple memory management errors in JasPer might lead to execution of arbitrary code via jpeg2k files.	CVE-2008-3522
VCID-tuqm-jg2y-zqak	netpbm: Out-of-bounds write of heap data	CVE-2017-2580
VCID-zezh-euwy-9ka7	netpbm: Null pointer dereference in stringToUint function	CVE-2017-2586

Vulnerability

Summary

Aliases

VCID-5wj4-5xbm-wuaz

Buffer overflow in pamtofits of NetPBM 10.30 through 10.33 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code when assembling the header, possibly related to an off-by-one error.

CVE-2006-3145

VCID-8fjp-kfqu-x7da

netpbm: Out-of-bounds write in writeRasterPbm() function

CVE-2017-2581

VCID-8x21-r48h-affp

netpbm: Insufficient size check of memory allocation in createCanvas() function

CVE-2017-2587

VCID-932v-xwug-nbfy

Multiple memory management errors in JasPer might lead to execution of arbitrary code via jpeg2k files.

CVE-2008-3520

VCID-ma8q-csum-fqa9

pamperspective in Netpbm before 10.35.48 does not properly calculate a window height, which allows context-dependent attackers to cause a denial of service (crash) via a crafted image file that triggers an out-of-bounds read.

CVE-2008-4799

VCID-q4qe-yn6z-nqhk

netpbm: Out-of-bounds read in expandCodeOntoStack()

CVE-2017-2579

VCID-qxkx-jxqj-8yhb

netpbm: heap-buffer-overflow in pm_mallocarray2 function in lib/util/mallocvar.c

CVE-2018-8975

VCID-rhmk-vmzk-hybk

netpbm: Calls TIFFRGBA with width and height parameters switched

CVE-2017-5849

VCID-tqtm-achn-z3fg

Multiple memory management errors in JasPer might lead to execution of arbitrary code via jpeg2k files.

CVE-2008-3522

VCID-tuqm-jg2y-zqak

netpbm: Out-of-bounds write of heap data

CVE-2017-2580

VCID-zezh-euwy-9ka7

netpbm: Null pointer dereference in stringToUint function

CVE-2017-2586

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:58:09.707143+00:00	Debian Importer	Fixing	VCID-qxkx-jxqj-8yhb	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:25:07.207555+00:00	Debian Importer	Fixing	VCID-tuqm-jg2y-zqak	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:21:38.295012+00:00	Debian Importer	Fixing	VCID-rhmk-vmzk-hybk	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:22:06.071999+00:00	Debian Importer	Fixing	VCID-q4qe-yn6z-nqhk	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:51:18.335017+00:00	Debian Importer	Fixing	VCID-932v-xwug-nbfy	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:10:17.469830+00:00	Debian Importer	Fixing	VCID-5wj4-5xbm-wuaz	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:01:06.555427+00:00	Debian Importer	Fixing	VCID-tqtm-achn-z3fg	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:20:38.819345+00:00	Debian Importer	Fixing	VCID-8x21-r48h-affp	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:51:58.526068+00:00	Debian Importer	Fixing	VCID-zezh-euwy-9ka7	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:48:48.806242+00:00	Debian Importer	Fixing	VCID-ma8q-csum-fqa9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:38:47.360014+00:00	Debian Importer	Fixing	VCID-8fjp-kfqu-x7da	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:54:32.881409+00:00	Debian Importer	Fixing	VCID-qxkx-jxqj-8yhb	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:30:00.639328+00:00	Debian Importer	Fixing	VCID-tuqm-jg2y-zqak	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:27:25.984850+00:00	Debian Importer	Fixing	VCID-rhmk-vmzk-hybk	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:44:25.780786+00:00	Debian Importer	Fixing	VCID-q4qe-yn6z-nqhk	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:21:02.006441+00:00	Debian Importer	Fixing	VCID-932v-xwug-nbfy	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:50:02.230515+00:00	Debian Importer	Fixing	VCID-5wj4-5xbm-wuaz	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:43:03.737484+00:00	Debian Importer	Fixing	VCID-tqtm-achn-z3fg	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:14:31.144972+00:00	Debian Importer	Fixing	VCID-8x21-r48h-affp	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:57:13.199807+00:00	Debian Importer	Fixing	VCID-zezh-euwy-9ka7	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:55:17.119776+00:00	Debian Importer	Fixing	VCID-ma8q-csum-fqa9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:48:49.080148+00:00	Debian Importer	Fixing	VCID-8fjp-kfqu-x7da	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:46:52.016742+00:00	Debian Importer	Fixing	VCID-qxkx-jxqj-8yhb	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:51.968342+00:00	Debian Importer	Fixing	VCID-rhmk-vmzk-hybk	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:51.920239+00:00	Debian Importer	Fixing	VCID-8x21-r48h-affp	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:51.872128+00:00	Debian Importer	Fixing	VCID-zezh-euwy-9ka7	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:51.825986+00:00	Debian Importer	Fixing	VCID-8fjp-kfqu-x7da	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:51.761103+00:00	Debian Importer	Fixing	VCID-tuqm-jg2y-zqak	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:51.695902+00:00	Debian Importer	Fixing	VCID-q4qe-yn6z-nqhk	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:51.566463+00:00	Debian Importer	Fixing	VCID-ma8q-csum-fqa9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:51.517898+00:00	Debian Importer	Fixing	VCID-tqtm-achn-z3fg	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:51.469515+00:00	Debian Importer	Fixing	VCID-932v-xwug-nbfy	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:51.356938+00:00	Debian Importer	Fixing	VCID-5wj4-5xbm-wuaz	https://security-tracker.debian.org/tracker/data/json	38.1.0