Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-szfb-zfrk-4qha

Summary

Multiple vulnerabilities have been discovered in GD, allowing for the
    execution of arbitrary code.

Aliases

alias	CVE-2007-3478

Fixed_packages

url	pkg:deb/debian/libgd2@2.0.35.dfsg-1?distro=trixie
purl	pkg:deb/debian/libgd2@2.0.35.dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgd2@2.0.35.dfsg-1%3Fdistro=trixie

url pkg:deb/debian/libgd2@2.0.36~rc1~dfsg-3%2Blenny1

purl pkg:deb/debian/libgd2@2.0.36~rc1~dfsg-3%2Blenny1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pj7-5gy9-97f7

vulnerability	VCID-34yj-pb2j-5faa

vulnerability	VCID-3bce-bp4m-3bcy

vulnerability	VCID-3v99-kbeq-47d8

vulnerability	VCID-4ehv-84qa-fubx

vulnerability	VCID-4eyx-7fmr-r7dm

vulnerability	VCID-6xda-97rd-9bam

vulnerability	VCID-6ysv-9bmx-w7df

vulnerability	VCID-75xx-y3xu-cqe2

vulnerability	VCID-7rvx-8x2z-7kdm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-9zks-j1fv-ukew

vulnerability	VCID-b878-mmfs-e3g1

vulnerability	VCID-cr4d-8dhn-gkgq

vulnerability	VCID-fcm8-f9e6-83b4

vulnerability	VCID-fwyg-v128-k7c9

vulnerability	VCID-g1b8-dkd3-j3a2

vulnerability	VCID-g3zj-r8ag-a7ej

vulnerability	VCID-habv-tr8c-rucd

vulnerability	VCID-hwys-fv79-b7d8

vulnerability	VCID-j52b-eq6b-dqae

vulnerability	VCID-jhzv-9ey6-gkdz

vulnerability	VCID-jun7-q9ts-ebfe

vulnerability	VCID-k6qv-tnq5-ybd7

vulnerability	VCID-ku2g-q6cg-ayhc

vulnerability	VCID-m3ve-pf4u-9qhh

vulnerability	VCID-pnee-e13t-57a2

vulnerability	VCID-qqe4-4aja-j7dz

vulnerability	VCID-r7yv-ryzk-z3e8

vulnerability	VCID-s33d-rhg8-wqej

vulnerability	VCID-s83u-wk4f-wkfd

vulnerability	VCID-sszm-mvm2-m7ee

vulnerability	VCID-tfaf-hb2s-fyb9

vulnerability	VCID-vya2-pzx7-m7c1

vulnerability	VCID-x14b-aaj3-nyed

vulnerability	VCID-x635-b1cj-m7d7

vulnerability	VCID-zp5r-wjhe-u7b3

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgd2@2.0.36~rc1~dfsg-3%252Blenny1

url	pkg:deb/debian/libgd2@2.3.0-2?distro=trixie
purl	pkg:deb/debian/libgd2@2.3.0-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgd2@2.3.0-2%3Fdistro=trixie

url	pkg:deb/debian/libgd2@2.3.3-9?distro=trixie
purl	pkg:deb/debian/libgd2@2.3.3-9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgd2@2.3.3-9%3Fdistro=trixie

url	pkg:deb/debian/libgd2@2.3.3-13?distro=trixie
purl	pkg:deb/debian/libgd2@2.3.3-13?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgd2@2.3.3-13%3Fdistro=trixie

url	pkg:ebuild/media-libs/gd@2.0.35
purl	pkg:ebuild/media-libs/gd@2.0.35
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/gd@2.0.35

Affected_packages

url pkg:deb/debian/libgd2@2.0.1-10woody2

purl pkg:deb/debian/libgd2@2.0.1-10woody2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pj7-5gy9-97f7

vulnerability	VCID-29sd-8qne-53d1

vulnerability	VCID-2bcm-xg5v-kyaw

vulnerability	VCID-34yj-pb2j-5faa

vulnerability	VCID-3bce-bp4m-3bcy

vulnerability	VCID-3v99-kbeq-47d8

vulnerability	VCID-45dp-3xz9-qyd3

vulnerability	VCID-49jr-gtjs-1ba9

vulnerability	VCID-4ehv-84qa-fubx

vulnerability	VCID-4eyx-7fmr-r7dm

vulnerability	VCID-6xda-97rd-9bam

vulnerability	VCID-6ysv-9bmx-w7df

vulnerability	VCID-75xx-y3xu-cqe2

vulnerability	VCID-7d1e-wnq6-4qfr

vulnerability	VCID-7rvx-8x2z-7kdm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-9zks-j1fv-ukew

vulnerability	VCID-b878-mmfs-e3g1

vulnerability	VCID-busj-qfth-v7e3

vulnerability	VCID-cr4d-8dhn-gkgq

vulnerability	VCID-ek5b-jujn-bqet

vulnerability	VCID-fcm8-f9e6-83b4

vulnerability	VCID-fwyg-v128-k7c9

vulnerability	VCID-g1b8-dkd3-j3a2

vulnerability	VCID-g3zj-r8ag-a7ej

vulnerability	VCID-gcg3-b5bm-73dw

vulnerability	VCID-habv-tr8c-rucd

vulnerability	VCID-he5a-srth-rydf

vulnerability	VCID-hwys-fv79-b7d8

vulnerability	VCID-j15c-u5ty-jug1

vulnerability	VCID-j52b-eq6b-dqae

vulnerability	VCID-jhzv-9ey6-gkdz

vulnerability	VCID-jun7-q9ts-ebfe

vulnerability	VCID-k6qv-tnq5-ybd7

vulnerability	VCID-ku2g-q6cg-ayhc

vulnerability	VCID-m3ve-pf4u-9qhh

vulnerability	VCID-n7w7-16vs-z3gg

vulnerability	VCID-pnee-e13t-57a2

vulnerability	VCID-qqe4-4aja-j7dz

vulnerability	VCID-r7yv-ryzk-z3e8

vulnerability	VCID-s33d-rhg8-wqej

vulnerability	VCID-s83u-wk4f-wkfd

vulnerability	VCID-sszm-mvm2-m7ee

vulnerability	VCID-svg5-jd8s-mbb5

vulnerability	VCID-szfb-zfrk-4qha

vulnerability	VCID-tfaf-hb2s-fyb9

vulnerability	VCID-tttf-2akk-57ez

vulnerability	VCID-vqee-h72u-hbar

vulnerability	VCID-vya2-pzx7-m7c1

vulnerability	VCID-x14b-aaj3-nyed

vulnerability	VCID-x635-b1cj-m7d7

vulnerability	VCID-yhfa-jcqy-wkdx

vulnerability	VCID-zp5r-wjhe-u7b3

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgd2@2.0.1-10woody2

url pkg:deb/debian/libgd2@2.0.33-1.1sarge1

purl pkg:deb/debian/libgd2@2.0.33-1.1sarge1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pj7-5gy9-97f7

vulnerability	VCID-2bcm-xg5v-kyaw

vulnerability	VCID-34yj-pb2j-5faa

vulnerability	VCID-3bce-bp4m-3bcy

vulnerability	VCID-3v99-kbeq-47d8

vulnerability	VCID-45dp-3xz9-qyd3

vulnerability	VCID-4ehv-84qa-fubx

vulnerability	VCID-4eyx-7fmr-r7dm

vulnerability	VCID-6xda-97rd-9bam

vulnerability	VCID-6ysv-9bmx-w7df

vulnerability	VCID-75xx-y3xu-cqe2

vulnerability	VCID-7d1e-wnq6-4qfr

vulnerability	VCID-7rvx-8x2z-7kdm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-9zks-j1fv-ukew

vulnerability	VCID-b878-mmfs-e3g1

vulnerability	VCID-busj-qfth-v7e3

vulnerability	VCID-cr4d-8dhn-gkgq

vulnerability	VCID-ek5b-jujn-bqet

vulnerability	VCID-fcm8-f9e6-83b4

vulnerability	VCID-fwyg-v128-k7c9

vulnerability	VCID-g1b8-dkd3-j3a2

vulnerability	VCID-g3zj-r8ag-a7ej

vulnerability	VCID-habv-tr8c-rucd

vulnerability	VCID-he5a-srth-rydf

vulnerability	VCID-hwys-fv79-b7d8

vulnerability	VCID-j15c-u5ty-jug1

vulnerability	VCID-j52b-eq6b-dqae

vulnerability	VCID-jhzv-9ey6-gkdz

vulnerability	VCID-jun7-q9ts-ebfe

vulnerability	VCID-k6qv-tnq5-ybd7

vulnerability	VCID-ku2g-q6cg-ayhc

vulnerability	VCID-m3ve-pf4u-9qhh

vulnerability	VCID-n7w7-16vs-z3gg

vulnerability	VCID-pnee-e13t-57a2

vulnerability	VCID-qqe4-4aja-j7dz

vulnerability	VCID-r7yv-ryzk-z3e8

vulnerability	VCID-s33d-rhg8-wqej

vulnerability	VCID-s83u-wk4f-wkfd

vulnerability	VCID-sszm-mvm2-m7ee

vulnerability	VCID-svg5-jd8s-mbb5

vulnerability	VCID-szfb-zfrk-4qha

vulnerability	VCID-tfaf-hb2s-fyb9

vulnerability	VCID-tttf-2akk-57ez

vulnerability	VCID-vqee-h72u-hbar

vulnerability	VCID-vya2-pzx7-m7c1

vulnerability	VCID-x14b-aaj3-nyed

vulnerability	VCID-x635-b1cj-m7d7

vulnerability	VCID-yhfa-jcqy-wkdx

vulnerability	VCID-zp5r-wjhe-u7b3

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgd2@2.0.33-1.1sarge1

url pkg:deb/debian/libgd2@2.0.33-5.2

purl pkg:deb/debian/libgd2@2.0.33-5.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pj7-5gy9-97f7

vulnerability	VCID-34yj-pb2j-5faa

vulnerability	VCID-3bce-bp4m-3bcy

vulnerability	VCID-3v99-kbeq-47d8

vulnerability	VCID-45dp-3xz9-qyd3

vulnerability	VCID-4ehv-84qa-fubx

vulnerability	VCID-4eyx-7fmr-r7dm

vulnerability	VCID-6xda-97rd-9bam

vulnerability	VCID-6ysv-9bmx-w7df

vulnerability	VCID-75xx-y3xu-cqe2

vulnerability	VCID-7d1e-wnq6-4qfr

vulnerability	VCID-7rvx-8x2z-7kdm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-9zks-j1fv-ukew

vulnerability	VCID-b878-mmfs-e3g1

vulnerability	VCID-busj-qfth-v7e3

vulnerability	VCID-cr4d-8dhn-gkgq

vulnerability	VCID-ek5b-jujn-bqet

vulnerability	VCID-fcm8-f9e6-83b4

vulnerability	VCID-fwyg-v128-k7c9

vulnerability	VCID-g1b8-dkd3-j3a2

vulnerability	VCID-g3zj-r8ag-a7ej

vulnerability	VCID-habv-tr8c-rucd

vulnerability	VCID-hwys-fv79-b7d8

vulnerability	VCID-j15c-u5ty-jug1

vulnerability	VCID-j52b-eq6b-dqae

vulnerability	VCID-jhzv-9ey6-gkdz

vulnerability	VCID-jun7-q9ts-ebfe

vulnerability	VCID-k6qv-tnq5-ybd7

vulnerability	VCID-ku2g-q6cg-ayhc

vulnerability	VCID-m3ve-pf4u-9qhh

vulnerability	VCID-n7w7-16vs-z3gg

vulnerability	VCID-pnee-e13t-57a2

vulnerability	VCID-qqe4-4aja-j7dz

vulnerability	VCID-r7yv-ryzk-z3e8

vulnerability	VCID-s33d-rhg8-wqej

vulnerability	VCID-s83u-wk4f-wkfd

vulnerability	VCID-sszm-mvm2-m7ee

vulnerability	VCID-svg5-jd8s-mbb5

vulnerability	VCID-szfb-zfrk-4qha

vulnerability	VCID-tfaf-hb2s-fyb9

vulnerability	VCID-tttf-2akk-57ez

vulnerability	VCID-vqee-h72u-hbar

vulnerability	VCID-vya2-pzx7-m7c1

vulnerability	VCID-x14b-aaj3-nyed

vulnerability	VCID-x635-b1cj-m7d7

vulnerability	VCID-yhfa-jcqy-wkdx

vulnerability	VCID-zp5r-wjhe-u7b3

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgd2@2.0.33-5.2

url pkg:deb/debian/libgd2@2.0.33-5.2etch2

purl pkg:deb/debian/libgd2@2.0.33-5.2etch2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pj7-5gy9-97f7

vulnerability	VCID-34yj-pb2j-5faa

vulnerability	VCID-3bce-bp4m-3bcy

vulnerability	VCID-3v99-kbeq-47d8

vulnerability	VCID-45dp-3xz9-qyd3

vulnerability	VCID-4ehv-84qa-fubx

vulnerability	VCID-4eyx-7fmr-r7dm

vulnerability	VCID-6xda-97rd-9bam

vulnerability	VCID-6ysv-9bmx-w7df

vulnerability	VCID-75xx-y3xu-cqe2

vulnerability	VCID-7d1e-wnq6-4qfr

vulnerability	VCID-7rvx-8x2z-7kdm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-9zks-j1fv-ukew

vulnerability	VCID-b878-mmfs-e3g1

vulnerability	VCID-busj-qfth-v7e3

vulnerability	VCID-cr4d-8dhn-gkgq

vulnerability	VCID-ek5b-jujn-bqet

vulnerability	VCID-fcm8-f9e6-83b4

vulnerability	VCID-fwyg-v128-k7c9

vulnerability	VCID-g1b8-dkd3-j3a2

vulnerability	VCID-g3zj-r8ag-a7ej

vulnerability	VCID-habv-tr8c-rucd

vulnerability	VCID-hwys-fv79-b7d8

vulnerability	VCID-j15c-u5ty-jug1

vulnerability	VCID-j52b-eq6b-dqae

vulnerability	VCID-jhzv-9ey6-gkdz

vulnerability	VCID-jun7-q9ts-ebfe

vulnerability	VCID-k6qv-tnq5-ybd7

vulnerability	VCID-ku2g-q6cg-ayhc

vulnerability	VCID-m3ve-pf4u-9qhh

vulnerability	VCID-n7w7-16vs-z3gg

vulnerability	VCID-pnee-e13t-57a2

vulnerability	VCID-qqe4-4aja-j7dz

vulnerability	VCID-r7yv-ryzk-z3e8

vulnerability	VCID-s33d-rhg8-wqej

vulnerability	VCID-s83u-wk4f-wkfd

vulnerability	VCID-sszm-mvm2-m7ee

vulnerability	VCID-svg5-jd8s-mbb5

vulnerability	VCID-szfb-zfrk-4qha

vulnerability	VCID-tfaf-hb2s-fyb9

vulnerability	VCID-tttf-2akk-57ez

vulnerability	VCID-vqee-h72u-hbar

vulnerability	VCID-vya2-pzx7-m7c1

vulnerability	VCID-x14b-aaj3-nyed

vulnerability	VCID-x635-b1cj-m7d7

vulnerability	VCID-yhfa-jcqy-wkdx

vulnerability	VCID-zp5r-wjhe-u7b3

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgd2@2.0.33-5.2etch2

References

reference_url	http://bugs.libgd.org/?do=details&task_id=48
reference_id
reference_type
scores
url	http://bugs.libgd.org/?do=details&task_id=48

reference_url	http://bugs.php.net/bug.php?id=40578
reference_id
reference_type
scores
url	http://bugs.php.net/bug.php?id=40578

reference_url	http://fedoranews.org/updates/FEDORA-2007-205.shtml
reference_id
reference_type
scores
url	http://fedoranews.org/updates/FEDORA-2007-205.shtml

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052848.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052848.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052854.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052854.html

reference_url	http://osvdb.org/37740
reference_id
reference_type
scores
url	http://osvdb.org/37740

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3478.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3478.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-3478

reference_id

reference_type

scores

value	0.12107
scoring_system	epss
scoring_elements	0.9378
published_at	2026-04-04T12:55:00Z

value	0.12107
scoring_system	epss
scoring_elements	0.93783
published_at	2026-04-07T12:55:00Z

value	0.12107
scoring_system	epss
scoring_elements	0.93761
published_at	2026-04-01T12:55:00Z

value	0.12107
scoring_system	epss
scoring_elements	0.93771
published_at	2026-04-02T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94433
published_at	2026-04-13T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94448
published_at	2026-04-16T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94452
published_at	2026-04-18T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94455
published_at	2026-04-26T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94457
published_at	2026-04-24T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94453
published_at	2026-04-29T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94458
published_at	2026-05-05T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94464
published_at	2026-05-07T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94475
published_at	2026-05-09T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94479
published_at	2026-05-11T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94486
published_at	2026-05-12T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.945
published_at	2026-05-14T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94425
published_at	2026-04-08T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94428
published_at	2026-04-09T12:55:00Z

value	0.14445
scoring_system	epss
scoring_elements	0.94431
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-3478

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=277421
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=277421

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3478
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3478

reference_url	http://secunia.com/advisories/25855
reference_id
reference_type
scores
url	http://secunia.com/advisories/25855

reference_url	http://secunia.com/advisories/26272
reference_id
reference_type
scores
url	http://secunia.com/advisories/26272

reference_url	http://secunia.com/advisories/26390
reference_id
reference_type
scores
url	http://secunia.com/advisories/26390

reference_url	http://secunia.com/advisories/26415
reference_id
reference_type
scores
url	http://secunia.com/advisories/26415

reference_url	http://secunia.com/advisories/26467
reference_id
reference_type
scores
url	http://secunia.com/advisories/26467

reference_url	http://secunia.com/advisories/26663
reference_id
reference_type
scores
url	http://secunia.com/advisories/26663

reference_url	http://secunia.com/advisories/26766
reference_id
reference_type
scores
url	http://secunia.com/advisories/26766

reference_url	http://secunia.com/advisories/26856
reference_id
reference_type
scores
url	http://secunia.com/advisories/26856

reference_url	http://secunia.com/advisories/30168
reference_id
reference_type
scores
url	http://secunia.com/advisories/30168

reference_url	http://secunia.com/advisories/42813
reference_id
reference_type
scores
url	http://secunia.com/advisories/42813

reference_url	http://security.gentoo.org/glsa/glsa-200708-05.xml
reference_id
reference_type
scores
url	http://security.gentoo.org/glsa/glsa-200708-05.xml

reference_url	http://security.gentoo.org/glsa/glsa-200711-34.xml
reference_id
reference_type
scores
url	http://security.gentoo.org/glsa/glsa-200711-34.xml

reference_url	http://security.gentoo.org/glsa/glsa-200805-13.xml
reference_id
reference_type
scores
url	http://security.gentoo.org/glsa/glsa-200805-13.xml

reference_url	https://issues.rpath.com/browse/RPL-1643
reference_id
reference_type
scores
url	https://issues.rpath.com/browse/RPL-1643

reference_url	http://www.libgd.org/ReleaseNote020035
reference_id
reference_type
scores
url	http://www.libgd.org/ReleaseNote020035

reference_url	http://www.mandriva.com/security/advisories?name=MDKSA-2007:153
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDKSA-2007:153

reference_url	http://www.mandriva.com/security/advisories?name=MDKSA-2007:164
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDKSA-2007:164

reference_url	http://www.novell.com/linux/security/advisories/2007_15_sr.html
reference_id
reference_type
scores
url	http://www.novell.com/linux/security/advisories/2007_15_sr.html

reference_url	http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00311.html
reference_id
reference_type
scores
url	http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00311.html

reference_url	http://www.securityfocus.com/archive/1/478796/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/478796/100/0/threaded

reference_url	http://www.trustix.org/errata/2007/0024/
reference_id
reference_type
scores
url	http://www.trustix.org/errata/2007/0024/

reference_url	http://www.vupen.com/english/advisories/2007/2336
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2007/2336

reference_url	http://www.vupen.com/english/advisories/2011/0022
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0022

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=277231
reference_id	277231
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=277231

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gd_graphics_library:gdlib::::::::
reference_id	cpe:2.3:a:gd_graphics_library:gdlib::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gd_graphics_library:gdlib::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2007-3478

reference_id

CVE-2007-3478

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2007-3478

reference_url	https://security.gentoo.org/glsa/200708-05
reference_id	GLSA-200708-05
reference_type
scores
url	https://security.gentoo.org/glsa/200708-05

Weaknesses

cwe_id	362
name	Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
description	The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

Exploits

Severity_range_score 4.3 - 4.3

Exploitability 0.5

Weighted_severity 3.9

Risk_score 1.9

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-szfb-zfrk-4qha

Vulnerability Instance