Search for packages
Package details: pkg:deb/debian/graphviz@2.26.3-14%2Bdeb7u2
purl pkg:deb/debian/graphviz@2.26.3-14%2Bdeb7u2
Next non-vulnerable version 2.42.4-3
Latest non-vulnerable version 2.42.4-3
Risk 4.5
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-6s5b-bjgh-aaas
Aliases:
CVE-2018-10196
NULL pointer dereference vulnerability in the rebuild_vlists function in lib/dotgen/conc.c in the dotgen library in Graphviz 2.40.1 allows remote attackers to cause a denial of service (application crash) via a crafted file.
2.40.1-6+deb10u1
Affected by 2 other vulnerabilities.
VCID-eyru-akun-aaaa
Aliases:
CVE-2020-18032
Buffer Overflow in Graphviz Graph Visualization Tools from commit ID f8b9e035 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by loading a crafted file into the "lib/common/shapes.c" component.
2.40.1-6+deb10u1
Affected by 2 other vulnerabilities.
2.42.2-5+deb11u1
Affected by 1 other vulnerability.
VCID-fea2-sbqr-aaaa
Aliases:
CVE-2014-1236
Stack-based buffer overflow in the chkNum function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via vectors related to a "badly formed number" and a "long digit list."
2.38.0-7
Affected by 2 other vulnerabilities.
VCID-qvcm-vzm8-aaab
Aliases:
CVE-2014-9157
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string.
2.38.0-7
Affected by 2 other vulnerabilities.
VCID-uc55-jdgf-aaaa
Aliases:
CVE-2014-0978
Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file.
2.38.0-7
Affected by 2 other vulnerabilities.
VCID-us9k-2tn2-aaag
Aliases:
CVE-2014-1235
Stack-based buffer overflow in the "yyerror" function in Graphviz 2.34.0 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted file. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-0978.
2.38.0-7
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (4)
Vulnerability Summary Aliases
VCID-fea2-sbqr-aaaa Stack-based buffer overflow in the chkNum function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via vectors related to a "badly formed number" and a "long digit list." CVE-2014-1236
VCID-kdf2-e615-aaaj ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file. CVE-2009-3736
VCID-qvcm-vzm8-aaab Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string. CVE-2014-9157
VCID-uc55-jdgf-aaaa Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file. CVE-2014-0978

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T19:07:40.941734+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T18:22:24.681586+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T16:55:44.412958+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:28:24.494902+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:21:32.005403+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:36:12.402916+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:32:09.204506+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:28:16.635663+00:00 Debian Oval Importer Fixing VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:11:00.133828+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T09:23:13.547783+00:00 Debian Oval Importer Fixing VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-21T09:19:19.206495+00:00 Debian Oval Importer Fixing VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-21T09:15:32.994893+00:00 Debian Oval Importer Fixing VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-20T22:48:00.711022+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas None 36.1.3
2025-06-20T22:31:05.137810+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa None 36.1.3
2025-06-20T21:44:10.455851+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa None 36.1.3
2025-06-20T21:21:53.011627+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag None 36.1.3
2025-06-20T21:08:07.527644+00:00 Debian Oval Importer Fixing VCID-kdf2-e615-aaaj None 36.1.3
2025-06-20T20:38:40.960124+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa None 36.1.3
2025-06-20T19:51:00.804070+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab None 36.1.3
2025-06-20T19:34:09.257465+00:00 Debian Oval Importer Fixing VCID-uc55-jdgf-aaaa None 36.1.3
2025-06-20T19:29:50.415289+00:00 Debian Oval Importer Fixing VCID-qvcm-vzm8-aaab None 36.1.3
2025-06-08T13:18:12.787793+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:20:23.948384+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:36:44.029109+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:53:11.016225+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T09:40:52.207397+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:22:57.520505+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:15:47.346170+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:29:19.294657+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:31:06.959177+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:28:37.732285+00:00 Debian Oval Importer Fixing VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:16:59.689572+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T03:11:06.185832+00:00 Debian Oval Importer Fixing VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-08T03:07:09.649645+00:00 Debian Oval Importer Fixing VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-08T03:03:15.611948+00:00 Debian Oval Importer Fixing VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-07T16:11:54.089718+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas None 36.1.0
2025-06-07T15:55:12.514201+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa None 36.1.0
2025-06-07T15:07:07.017471+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa None 36.1.0
2025-06-07T14:45:04.990011+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag None 36.1.0
2025-06-07T14:33:33.799665+00:00 Debian Oval Importer Fixing VCID-kdf2-e615-aaaj None 36.1.0
2025-06-07T14:11:17.698006+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa None 36.1.0
2025-06-07T13:42:24.981965+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab None 36.1.0
2025-06-07T13:30:05.295454+00:00 Debian Oval Importer Fixing VCID-uc55-jdgf-aaaa None 36.1.0
2025-06-07T13:26:46.429087+00:00 Debian Oval Importer Fixing VCID-qvcm-vzm8-aaab None 36.1.0
2025-06-03T13:26:03.257823+00:00 Debian Oval Importer Fixing VCID-qvcm-vzm8-aaab None 36.1.2
2025-04-12T20:49:51.009961+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:14:44.173253+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:05:40.189904+00:00 Debian Oval Importer Fixing VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:06:15.084382+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:06:20.781088+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:21:16.948547+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:35:37.795038+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T08:13:17.066675+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:54:18.401040+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:47:22.776113+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:02:07.459661+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:02:26.790486+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:59:50.826939+00:00 Debian Oval Importer Fixing VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:48:02.669275+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T01:38:30.903154+00:00 Debian Oval Importer Fixing VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-08T01:34:23.462671+00:00 Debian Oval Importer Fixing VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-08T01:30:24.056934+00:00 Debian Oval Importer Fixing VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-07T14:43:17.807650+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas None 36.0.0
2025-04-07T14:26:11.814695+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa None 36.0.0
2025-04-07T13:38:52.784800+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa None 36.0.0
2025-04-07T13:17:05.683596+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag None 36.0.0
2025-04-07T13:05:37.089662+00:00 Debian Oval Importer Fixing VCID-kdf2-e615-aaaj None 36.0.0
2025-04-07T12:44:34.357812+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa None 36.0.0
2025-04-07T12:17:43.519255+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab None 36.0.0
2025-04-07T12:05:32.084913+00:00 Debian Oval Importer Fixing VCID-uc55-jdgf-aaaa None 36.0.0
2025-04-07T12:02:18.235367+00:00 Debian Oval Importer Fixing VCID-qvcm-vzm8-aaab None 36.0.0
2024-11-27T09:54:16.579499+00:00 Debian Oval Importer Fixing VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-10-13T05:23:46.150506+00:00 Debian Oval Importer Fixing VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-09-20T20:38:20.055713+00:00 Debian Oval Importer Fixing VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1