Search for packages
Package details: pkg:deb/debian/graphviz@2.8-3%2Betch1
purl pkg:deb/debian/graphviz@2.8-3%2Betch1
Next non-vulnerable version 2.42.4-3
Latest non-vulnerable version 2.42.4-3
Risk 4.5
Vulnerabilities affecting this package (8)
Vulnerability Summary Fixed by
VCID-6s5b-bjgh-aaas
Aliases:
CVE-2018-10196
NULL pointer dereference vulnerability in the rebuild_vlists function in lib/dotgen/conc.c in the dotgen library in Graphviz 2.40.1 allows remote attackers to cause a denial of service (application crash) via a crafted file.
2.40.1-6+deb10u1
Affected by 2 other vulnerabilities.
VCID-a41g-bu5m-aaah
Aliases:
CVE-2008-4555
Stack-based buffer overflow in the push_subg function in parser.y (lib/graph/parser.c) in Graphviz 2.20.2, and possibly earlier versions, allows user-assisted remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a DOT file with a large number of Agraph_t elements.
2.20.2-3
Affected by 7 other vulnerabilities.
VCID-eyru-akun-aaaa
Aliases:
CVE-2020-18032
Buffer Overflow in Graphviz Graph Visualization Tools from commit ID f8b9e035 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by loading a crafted file into the "lib/common/shapes.c" component.
2.40.1-6+deb10u1
Affected by 2 other vulnerabilities.
2.42.2-5+deb11u1
Affected by 1 other vulnerability.
VCID-fea2-sbqr-aaaa
Aliases:
CVE-2014-1236
Stack-based buffer overflow in the chkNum function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via vectors related to a "badly formed number" and a "long digit list."
2.26.3-14+deb7u2
Affected by 6 other vulnerabilities.
2.38.0-7
Affected by 2 other vulnerabilities.
VCID-kdf2-e615-aaaj
Aliases:
CVE-2009-3736
ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.
2.26.3-14+deb7u2
Affected by 6 other vulnerabilities.
VCID-qvcm-vzm8-aaab
Aliases:
CVE-2014-9157
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string.
2.26.3-14+deb7u2
Affected by 6 other vulnerabilities.
2.38.0-7
Affected by 2 other vulnerabilities.
VCID-uc55-jdgf-aaaa
Aliases:
CVE-2014-0978
Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file.
2.26.3-14+deb7u2
Affected by 6 other vulnerabilities.
2.38.0-7
Affected by 2 other vulnerabilities.
VCID-us9k-2tn2-aaag
Aliases:
CVE-2014-1235
Stack-based buffer overflow in the "yyerror" function in Graphviz 2.34.0 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted file. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-0978.
2.38.0-7
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T19:07:40.933774+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T18:22:24.672309+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T17:02:24.804230+00:00 Debian Oval Importer Affected by VCID-a41g-bu5m-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T16:55:44.404428+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:28:24.485869+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:21:31.995898+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:36:12.393772+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:32:09.193982+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:28:16.627699+00:00 Debian Oval Importer Affected by VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:11:00.125643+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T09:23:13.538687+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-21T09:19:19.196854+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-21T09:15:32.986083+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-20T23:40:31.270953+00:00 Debian Oval Importer Affected by VCID-a41g-bu5m-aaah None 36.1.3
2025-06-20T22:48:00.702557+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas None 36.1.3
2025-06-20T22:31:05.129479+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa None 36.1.3
2025-06-20T21:21:53.005488+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag None 36.1.3
2025-06-20T21:08:07.520873+00:00 Debian Oval Importer Affected by VCID-kdf2-e615-aaaj None 36.1.3
2025-06-20T20:38:40.953515+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa None 36.1.3
2025-06-20T19:34:09.249933+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa None 36.1.3
2025-06-20T19:29:50.406154+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab None 36.1.3
2025-06-08T13:18:12.780093+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:20:23.942271+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:36:44.022683+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:53:11.009367+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T09:47:27.260688+00:00 Debian Oval Importer Affected by VCID-a41g-bu5m-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T09:40:52.201368+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:22:57.513099+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:15:47.340034+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:29:19.288583+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:31:06.951979+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:28:37.717644+00:00 Debian Oval Importer Affected by VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:16:59.682224+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T03:11:06.178856+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-08T03:07:09.642622+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-08T03:03:15.604394+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-07T17:03:27.284681+00:00 Debian Oval Importer Affected by VCID-a41g-bu5m-aaah None 36.1.0
2025-06-07T16:11:54.083595+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas None 36.1.0
2025-06-07T15:55:12.506963+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa None 36.1.0
2025-06-07T14:45:04.983914+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag None 36.1.0
2025-06-07T14:33:33.792385+00:00 Debian Oval Importer Affected by VCID-kdf2-e615-aaaj None 36.1.0
2025-06-07T14:11:17.691113+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa None 36.1.0
2025-06-07T13:30:05.289359+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa None 36.1.0
2025-06-07T13:26:46.421777+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab None 36.1.0
2025-06-03T13:26:03.251672+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab None 36.1.2
2025-04-12T21:56:19.942970+00:00 Debian Oval Importer Affected by VCID-a41g-bu5m-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:49:50.988773+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:14:44.153286+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:05:40.170314+00:00 Debian Oval Importer Affected by VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:06:15.064388+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:06:20.761237+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:21:16.928215+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:35:37.775520+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T08:19:45.078930+00:00 Debian Oval Importer Affected by VCID-a41g-bu5m-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T08:13:17.045597+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:54:18.380981+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:47:22.758236+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:02:07.439344+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:02:26.770871+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:59:50.809042+00:00 Debian Oval Importer Affected by VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:48:02.649381+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T01:38:30.883422+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-08T01:34:23.442127+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-08T01:30:24.036956+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-07T15:36:46.394220+00:00 Debian Oval Importer Affected by VCID-a41g-bu5m-aaah None 36.0.0
2025-04-07T14:43:17.785947+00:00 Debian Oval Importer Affected by VCID-6s5b-bjgh-aaas None 36.0.0
2025-04-07T14:26:11.792933+00:00 Debian Oval Importer Affected by VCID-eyru-akun-aaaa None 36.0.0
2025-04-07T13:17:05.662157+00:00 Debian Oval Importer Affected by VCID-us9k-2tn2-aaag None 36.0.0
2025-04-07T13:05:37.070352+00:00 Debian Oval Importer Affected by VCID-kdf2-e615-aaaj None 36.0.0
2025-04-07T12:44:34.336403+00:00 Debian Oval Importer Affected by VCID-fea2-sbqr-aaaa None 36.0.0
2025-04-07T12:05:32.063373+00:00 Debian Oval Importer Affected by VCID-uc55-jdgf-aaaa None 36.0.0
2025-04-07T12:02:18.213983+00:00 Debian Oval Importer Affected by VCID-qvcm-vzm8-aaab None 36.0.0
2024-11-27T09:54:16.557985+00:00 Debian Oval Importer Affected by VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-26T19:06:11.928525+00:00 Debian Oval Importer Affected by VCID-a41g-bu5m-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-10-13T05:23:46.131180+00:00 Debian Oval Importer Affected by VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-12T19:16:47.710313+00:00 Debian Oval Importer Affected by VCID-a41g-bu5m-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-09-20T20:38:20.029526+00:00 Debian Oval Importer Affected by VCID-kdf2-e615-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T17:01:38.602671+00:00 Debian Oval Importer Affected by VCID-a41g-bu5m-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1