Search for packages
Package details: pkg:deb/debian/libgd2@2.3.0-2
purl pkg:deb/debian/libgd2@2.3.0-2
Next non-vulnerable version 2.3.3-9
Latest non-vulnerable version 2.3.3-9
Risk 3.4
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-11fp-nddr-aaah
Aliases:
CVE-2021-40145
gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) through 2.3.2 has a double free. NOTE: the vendor's position is "The GD2 image format is a proprietary image format of libgd. It has to be regarded as being obsolete, and should only be used for development and testing purposes.
2.3.3-9
Affected by 0 other vulnerabilities.
VCID-dq4w-ytv8-aaaj
Aliases:
CVE-2021-38115
read_header_tga in gd_tga.c in the GD Graphics Library (aka LibGD) through 2.3.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file.
2.3.3-9
Affected by 0 other vulnerabilities.
VCID-ewmf-ncfy-aaas
Aliases:
CVE-2021-40812
The GD Graphics Library (aka LibGD) through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks.
2.3.3-9
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (4)
Vulnerability Summary Aliases
VCID-dq4w-ytv8-aaaj read_header_tga in gd_tga.c in the GD Graphics Library (aka LibGD) through 2.3.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file. CVE-2021-38115
VCID-ewmf-ncfy-aaas The GD Graphics Library (aka LibGD) through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks. CVE-2021-40812
VCID-tdps-rxdb-aaar In the GD Graphics Library (aka LibGD) through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gd_tiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since the GD and GD2 formats are documented to be 'obsolete, and should only be used for development and testing purposes.' CVE-2017-6363
VCID-u1pm-j7sq-aaae gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL pointer dereference allowing attackers to crash an application via a specific function call sequence. Only affects PHP when linked with an external libgd (not bundled). CVE-2018-14553

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T20:21:38.173855+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas None 36.1.3
2025-06-21T19:13:04.020658+00:00 Debian Oval Importer Fixing VCID-u1pm-j7sq-aaae https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T13:42:50.971686+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-21T07:09:27.097839+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar None 36.1.3
2025-06-21T06:00:53.048414+00:00 Debian Oval Importer Fixing VCID-u1pm-j7sq-aaae None 36.1.3
2025-06-21T06:00:14.448006+00:00 Debian Oval Importer Fixing VCID-tdps-rxdb-aaar None 36.1.3
2025-06-21T04:50:20.902017+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah None 36.1.3
2025-06-21T04:10:46.601226+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-21T00:15:10.703651+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj None 36.1.3
2025-06-20T22:02:39.366387+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-20T21:53:18.606147+00:00 Debian Importer Fixing VCID-u1pm-j7sq-aaae None 36.1.3
2025-06-20T21:25:52.980286+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-08T12:49:30.533347+00:00 Debian Oval Importer Fixing VCID-tdps-rxdb-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:41:53.876011+00:00 Debian Oval Importer Fixing VCID-u1pm-j7sq-aaae https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-07T23:39:31.537479+00:00 Debian Oval Importer Fixing VCID-u1pm-j7sq-aaae None 36.1.0
2025-06-07T23:38:48.968794+00:00 Debian Oval Importer Fixing VCID-tdps-rxdb-aaar None 36.1.0
2025-04-12T23:05:50.896905+00:00 Debian Oval Importer Fixing VCID-u1pm-j7sq-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-12T23:03:48.525901+00:00 Debian Oval Importer Fixing VCID-dq4w-ytv8-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-12T23:03:34.083508+00:00 Debian Oval Importer Fixing VCID-ewmf-ncfy-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-12T18:36:28.437672+00:00 Debian Oval Importer Fixing VCID-tdps-rxdb-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:26:39.239832+00:00 Debian Oval Importer Fixing VCID-u1pm-j7sq-aaae https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-07T22:11:37.810108+00:00 Debian Oval Importer Fixing VCID-u1pm-j7sq-aaae None 36.0.0
2025-04-07T22:10:57.425800+00:00 Debian Oval Importer Fixing VCID-tdps-rxdb-aaar None 36.0.0
2025-04-06T21:43:56.089817+00:00 Debian Importer Fixing VCID-u1pm-j7sq-aaae https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-04-06T12:53:15.642026+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-04-05T16:28:38.406298+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas None 36.0.0
2025-04-05T10:15:27.862030+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-04-05T04:25:46.125103+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar None 36.0.0
2025-04-04T07:39:37.119479+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah None 36.0.0
2025-04-04T02:57:18.780816+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj None 36.0.0
2025-04-04T00:40:37.590541+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-04-04T00:31:00.772702+00:00 Debian Importer Fixing VCID-u1pm-j7sq-aaae None 36.0.0
2025-04-04T00:03:23.697495+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-02-20T06:16:32.205882+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas https://security-tracker.debian.org/tracker/data/json 35.1.0
2025-02-20T06:16:30.857840+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas None 35.1.0
2025-02-20T05:36:34.949646+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah https://security-tracker.debian.org/tracker/data/json 35.1.0
2025-02-20T05:36:32.644492+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah None 35.1.0
2025-02-20T04:52:40.635361+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj https://security-tracker.debian.org/tracker/data/json 35.1.0
2025-02-20T04:52:39.812397+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj None 35.1.0
2025-02-19T01:37:05.585245+00:00 Debian Importer Fixing VCID-u1pm-j7sq-aaae https://security-tracker.debian.org/tracker/data/json 35.1.0
2025-02-19T01:37:04.874183+00:00 Debian Importer Fixing VCID-u1pm-j7sq-aaae None 35.1.0
2025-02-18T22:40:28.258590+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar https://security-tracker.debian.org/tracker/data/json 35.1.0
2025-02-18T22:40:24.222817+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar None 35.1.0
2024-11-23T00:11:07.753033+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-11-23T00:11:06.365908+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas None 35.0.0
2024-11-22T23:32:22.710915+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-11-22T23:32:20.628384+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah None 35.0.0
2024-11-22T22:51:59.100368+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-11-21T20:21:28.421384+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-11-21T20:21:24.142377+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar None 35.0.0
2024-11-19T19:29:53.862984+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar https://security-tracker.debian.org/tracker/data/json 34.3.2
2024-11-19T19:29:49.694544+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar None 34.3.2
2024-10-09T22:39:33.017584+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-10-09T22:39:31.551742+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas None 34.0.2
2024-10-09T21:59:52.928796+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-10-09T21:59:50.668962+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah None 34.0.2
2024-10-09T21:16:46.592555+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-10-08T20:51:14.823740+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-10-08T20:51:10.391891+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar None 34.0.2
2024-09-19T06:26:49.967495+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas https://security-tracker.debian.org/tracker/data/json 34.0.1
2024-09-19T06:26:48.597386+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas None 34.0.1
2024-09-19T05:57:31.869416+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah https://security-tracker.debian.org/tracker/data/json 34.0.1
2024-09-19T05:57:29.865288+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah None 34.0.1
2024-09-19T05:20:59.840756+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj https://security-tracker.debian.org/tracker/data/json 34.0.1
2024-09-18T08:57:16.031812+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar https://security-tracker.debian.org/tracker/data/json 34.0.1
2024-09-18T08:57:11.902692+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar None 34.0.1
2024-04-25T04:51:05.481023+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas https://security-tracker.debian.org/tracker/data/json 34.0.0rc4
2024-04-25T04:51:01.310660+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas None 34.0.0rc4
2024-04-25T04:16:41.172394+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah https://security-tracker.debian.org/tracker/data/json 34.0.0rc4
2024-04-25T04:16:38.778911+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah None 34.0.0rc4
2024-04-25T03:52:52.372215+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj https://security-tracker.debian.org/tracker/data/json 34.0.0rc4
2024-04-25T03:52:51.577492+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj None 34.0.0rc4
2024-04-24T12:32:15.899814+00:00 Debian Importer Fixing VCID-u1pm-j7sq-aaae https://security-tracker.debian.org/tracker/data/json 34.0.0rc4
2024-04-24T12:32:15.121404+00:00 Debian Importer Fixing VCID-u1pm-j7sq-aaae None 34.0.0rc4
2024-04-24T11:35:04.576915+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar https://security-tracker.debian.org/tracker/data/json 34.0.0rc4
2024-04-24T11:34:59.768127+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar None 34.0.0rc4
2024-01-11T06:22:06.057282+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas https://security-tracker.debian.org/tracker/data/json 34.0.0rc2
2024-01-11T06:22:01.948714+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas None 34.0.0rc2
2024-01-11T05:44:35.263164+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah https://security-tracker.debian.org/tracker/data/json 34.0.0rc2
2024-01-11T05:44:32.596131+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah None 34.0.0rc2
2024-01-11T05:20:54.264209+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj https://security-tracker.debian.org/tracker/data/json 34.0.0rc2
2024-01-11T05:20:53.439709+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj None 34.0.0rc2
2024-01-10T14:26:02.627510+00:00 Debian Importer Fixing VCID-u1pm-j7sq-aaae https://security-tracker.debian.org/tracker/data/json 34.0.0rc2
2024-01-10T14:25:58.791252+00:00 Debian Importer Fixing VCID-u1pm-j7sq-aaae None 34.0.0rc2
2024-01-10T13:26:45.170975+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar https://security-tracker.debian.org/tracker/data/json 34.0.0rc2
2024-01-10T13:26:37.309356+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar None 34.0.0rc2
2024-01-04T17:27:54.065537+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas https://security-tracker.debian.org/tracker/data/json 34.0.0rc1
2024-01-04T17:27:49.768184+00:00 Debian Importer Affected by VCID-ewmf-ncfy-aaas None 34.0.0rc1
2024-01-04T17:00:21.721788+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah https://security-tracker.debian.org/tracker/data/json 34.0.0rc1
2024-01-04T17:00:19.170746+00:00 Debian Importer Affected by VCID-11fp-nddr-aaah None 34.0.0rc1
2024-01-04T16:42:09.929408+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj https://security-tracker.debian.org/tracker/data/json 34.0.0rc1
2024-01-04T16:42:09.101675+00:00 Debian Importer Affected by VCID-dq4w-ytv8-aaaj None 34.0.0rc1
2024-01-04T05:21:11.631832+00:00 Debian Importer Fixing VCID-u1pm-j7sq-aaae https://security-tracker.debian.org/tracker/data/json 34.0.0rc1
2024-01-04T05:21:10.815679+00:00 Debian Importer Fixing VCID-u1pm-j7sq-aaae None 34.0.0rc1
2024-01-04T04:46:55.880373+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar https://security-tracker.debian.org/tracker/data/json 34.0.0rc1
2024-01-04T04:46:50.991670+00:00 Debian Importer Fixing VCID-tdps-rxdb-aaar None 34.0.0rc1