Search for packages
| purl | pkg:deb/debian/libtk-img@1:1.3-13 |
| Next non-vulnerable version | 1:1.3-release-7+lenny1 |
| Latest non-vulnerable version | 1:1.3-release-7+lenny1 |
| Risk | 3.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-mwu7-u4py-aaas
Aliases: CVE-2008-0553 |
Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk (Tcl/Tk) before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-x12a-exzb-aaae | Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl (Tcl/Tk) 8.4.13 through 8.4.15 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first. NOTE: this issue is due to an incorrect patch for CVE-2007-5378. |
CVE-2007-5137
|
| VCID-xjwx-te5y-aaaj | Buffer overflow in the FileReadGIF function in tkImgGIF.c for Tk Toolkit 8.4.12 and earlier, and 8.3.5 and earlier, allows user-assisted attackers to cause a denial of service (segmentation fault) via an animated GIF in which the first subimage is smaller than a subsequent subimage, which triggers the overflow in the ReadImage function, a different vulnerability than CVE-2007-5137. |
CVE-2007-5378
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T17:35:31.878716+00:00 | Debian Oval Importer | Affected by | VCID-mwu7-u4py-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T16:54:58.285147+00:00 | Debian Oval Importer | Fixing | VCID-xjwx-te5y-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:50:24.634593+00:00 | Debian Oval Importer | Fixing | VCID-x12a-exzb-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T00:13:35.687975+00:00 | Debian Oval Importer | Fixing | VCID-xjwx-te5y-aaaj | None | 36.1.3 |
| 2025-06-20T23:26:31.103330+00:00 | Debian Oval Importer | Fixing | VCID-x12a-exzb-aaae | None | 36.1.3 |
| 2025-06-20T22:25:35.776046+00:00 | Debian Oval Importer | Affected by | VCID-mwu7-u4py-aaas | None | 36.1.3 |
| 2025-06-08T13:02:35.123419+00:00 | Debian Oval Importer | Fixing | VCID-xjwx-te5y-aaaj | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T10:10:10.851543+00:00 | Debian Oval Importer | Affected by | VCID-mwu7-u4py-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T09:40:06.582305+00:00 | Debian Oval Importer | Fixing | VCID-xjwx-te5y-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:44:34.817889+00:00 | Debian Oval Importer | Fixing | VCID-x12a-exzb-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T17:36:25.795978+00:00 | Debian Oval Importer | Fixing | VCID-xjwx-te5y-aaaj | None | 36.1.0 |
| 2025-06-07T16:49:26.100617+00:00 | Debian Oval Importer | Fixing | VCID-x12a-exzb-aaae | None | 36.1.0 |
| 2025-06-07T15:49:50.737607+00:00 | Debian Oval Importer | Affected by | VCID-mwu7-u4py-aaas | None | 36.1.0 |
| 2025-04-12T22:29:29.497263+00:00 | Debian Oval Importer | Fixing | VCID-x12a-exzb-aaae | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T21:27:03.564911+00:00 | Debian Oval Importer | Affected by | VCID-mwu7-u4py-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:50:03.144586+00:00 | Debian Oval Importer | Fixing | VCID-xjwx-te5y-aaaj | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T15:50:59.824770+00:00 | Debian Oval Importer | Affected by | VCID-mwu7-u4py-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T08:12:31.320679+00:00 | Debian Oval Importer | Fixing | VCID-xjwx-te5y-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T05:17:02.756376+00:00 | Debian Oval Importer | Fixing | VCID-x12a-exzb-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T16:11:08.783690+00:00 | Debian Oval Importer | Fixing | VCID-xjwx-te5y-aaaj | None | 36.0.0 |
| 2025-04-07T15:22:09.258507+00:00 | Debian Oval Importer | Fixing | VCID-x12a-exzb-aaae | None | 36.0.0 |
| 2025-04-07T14:20:39.366127+00:00 | Debian Oval Importer | Affected by | VCID-mwu7-u4py-aaas | None | 36.0.0 |
| 2024-11-26T12:22:31.538047+00:00 | Debian Oval Importer | Affected by | VCID-mwu7-u4py-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-26T08:37:35.769489+00:00 | Debian Oval Importer | Fixing | VCID-xjwx-te5y-aaaj | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-26T08:20:07.379195+00:00 | Debian Oval Importer | Fixing | VCID-x12a-exzb-aaae | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-10-12T14:49:17.009729+00:00 | Debian Oval Importer | Affected by | VCID-mwu7-u4py-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-12T12:21:30.459744+00:00 | Debian Oval Importer | Fixing | VCID-xjwx-te5y-aaaj | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-12T12:09:42.175057+00:00 | Debian Oval Importer | Fixing | VCID-x12a-exzb-aaae | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-09-20T15:35:03.523827+00:00 | Debian Oval Importer | Affected by | VCID-mwu7-u4py-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T14:50:24.292906+00:00 | Debian Oval Importer | Fixing | VCID-xjwx-te5y-aaaj | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T14:46:46.576938+00:00 | Debian Oval Importer | Fixing | VCID-x12a-exzb-aaae | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |