Information on source package libgd2

Available versions

ReleaseVersion
jessie2.1.0-5+deb8u15
stretch2.2.4-2+deb9u6
stretch (security)2.2.4-2+deb9u4
buster2.2.5-5.2+deb10u1
bullseye2.3.0-2
bookworm2.3.3-9
trixie2.3.3-12
sid2.3.3-12

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2021-40812fixedfixedfixedvulnerable (no DSA)fixedfixedfixedThe GD Graphics Library (aka LibGD) through 2.3.2 has an out-of-bounds ...
CVE-2021-38115fixedfixedfixedvulnerable (no DSA)fixedfixedfixedread_header_tga in gd_tga.c in the GD Graphics Library (aka LibGD) thr ...
CVE-2017-6363vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedIn the GD Graphics Library (aka LibGD) through 2.2.5, there is a heap- ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2021-40145vulnerablevulnerablevulnerablevulnerablefixedfixedfixedgdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) throu ...

Resolved issues

BugDescription
TEMP-0601525-BEBB65libgd2: gdImageColorTransparent can write outside buffer
CVE-2019-11038When using the gdImageCreateFromXbm() function in the GD Graphics Libr ...
CVE-2019-6978The GD Graphics Library (aka LibGD) 2.2.5 has a double free in the gdI ...
CVE-2019-6977gdImageColorMatch in gd_color_match.c in the GD Graphics Library (aka ...
CVE-2018-1000222Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability ...
CVE-2018-14553gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL point ...
CVE-2018-5711gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP bef ...
CVE-2017-7890The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in th ...
CVE-2017-6362Double free vulnerability in the gdImagePngPtr function in libgd2 befo ...
CVE-2016-10168Integer overflow in gd_io.c in the GD Graphics Library (aka libgd) bef ...
CVE-2016-10167The gdImageCreateFromGd2Ctx function in gd_gd2.c in the GD Graphics Li ...
CVE-2016-10166Integer underflow in the _gdContributionsAlloc function in gd_interpol ...
CVE-2016-9933Stack consumption vulnerability in the gdImageFillToBorder function in ...
CVE-2016-9317The gdImageCreate function in the GD Graphics Library (aka libgd) befo ...
CVE-2016-8670Integer signedness error in the dynamicGetbuf function in gd_io_dp.c i ...
CVE-2016-7568Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD ...
CVE-2016-7127The imagegammacorrect function in ext/gd/gd.c in PHP before 5.6.25 and ...
CVE-2016-7126The imagetruecolortopalette function in ext/gd/gd.c in PHP before 5.6. ...
CVE-2016-6912Double free vulnerability in the gdImageWebPtr function in the GD Grap ...
CVE-2016-6911The dynamicGetbuf function in the GD Graphics Library (aka libgd) befo ...
CVE-2016-6906The read_image_tga function in gd_tga.c in the GD Graphics Library (ak ...
CVE-2016-6905The read_image_tga function in gd_tga.c in the GD Graphics Library (ak ...
CVE-2016-6214gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.3 allows re ...
CVE-2016-6207Integer overflow in the _gdContributionsAlloc function in gd_interpola ...
CVE-2016-6161The output function in gd_gif_out.c in the GD Graphics Library (aka li ...
CVE-2016-6132The gdImageCreateFromTgaCtx function in the GD Graphics Library (aka l ...
CVE-2016-6128The gdImageCropThreshold function in gd_crop.c in the GD Graphics Libr ...
CVE-2016-5767Integer overflow in the gdImageCreate function in gd.c in the GD Graph ...
CVE-2016-5766Integer overflow in the _gd2GetHeader function in gd_gd2.c in the GD G ...
CVE-2016-5116gd_xbm.c in the GD Graphics Library (aka libgd) before 2.2.0, as used ...
CVE-2016-3074Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or li ...
CVE-2015-8877The gdImageScaleTwoPass function in gd_interpolation.c in the GD Graph ...
CVE-2015-8874Stack consumption vulnerability in GD in PHP before 5.6.12 allows remo ...
CVE-2014-9709The GetCode_ function in gd_gif_in.c in GD 2.1.1 and earlier, as used ...
CVE-2014-5120gd_ctx.c in the GD component in PHP 5.4.x before 5.4.32 and 5.5.x befo ...
CVE-2014-2497The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP ...
CVE-2013-7456gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.1.1 ...
CVE-2009-3546The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5. ...
CVE-2008-5498Array index error in the imageRotate function in PHP 5.2.8 and earlier ...
CVE-2007-3996Multiple integer overflows in libgd in PHP before 5.2.4 allow remote a ...
CVE-2007-3478Race condition in gdImageStringFTEx (gdft_draw_bitmap) in gdft.c in th ...
CVE-2007-3477The (a) imagearc and (b) imagefilledarc functions in GD Graphics Libra ...
CVE-2007-3476Array index error in gd_gif_in.c in the GD Graphics Library (libgd) be ...
CVE-2007-3475The GD Graphics Library (libgd) before 2.0.35 allows user-assisted rem ...
CVE-2007-3473The gdImageCreateXbm function in the GD Graphics Library (libgd) befor ...
CVE-2007-3472Integer overflow in gdImageCreateTrueColor function in the GD Graphics ...
CVE-2007-2756The gdPngReadData function in libgd 2.0.34 allows user-assisted attack ...
CVE-2007-2445The png_handle_tRNS function in pngrutil.c in libpng before 1.0.25 and ...
CVE-2007-1001Multiple integer overflows in the (1) createwbmp and (2) readwbmp func ...
CVE-2007-0455Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Grap ...
CVE-2006-4484Buffer overflow in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in ...
CVE-2006-2906The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas ...
CVE-2004-0990Integer overflow in GD Graphics Library libgd 2.0.28 (libgd2), and pos ...
CVE-2004-0941Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 an ...

Security announcements

DSA / DLADescription
DLA-3781-1libgd2 - security update
ELA-1069-1libgd2 - security update
DLA-2106-1libgd2 - security update
DLA-1817-1libgd2 - security update
DSA-4384-1libgd2 - security update
DLA-1651-1libgd2 - security update
DLA-1248-1libgd2 - security update
DLA-1106-1libgd2 - security update
DSA-3961-1libgd2 - security update
DSA-3938-1libgd2 - security update
DLA-1055-1libgd2 - security update
DSA-3777-1libgd2 - security update
DLA-804-1libgd2 - security update
DSA-3751-1libgd2 - security update
DLA-758-1libgd2 - security update
DLA-665-1libgd2 - security update
DSA-3693-1libgd2 - security update
DSA-3630-1libgd2 - security update
DLA-563-1libgd2 - security update
DSA-3619-1libgd2 - security update
DLA-534-1libgd2 - security update
DSA-3587-1libgd2 - security update
DLA-482-1libgd2 - security update
DSA-3556-1libgd2 - security update
DLA-189-1libgd2 - security update
DSA-3215-1libgd2 - security update
DSA-1936-1libgd2 - several vulnerabilities
DSA-1613-1libgd2 - multiple vulnerabilities
DSA-1117libgd2 - insufficient input sanitising
DSA-602-1libgd2 - integer overlow
DSA-591-1libgd2 - integer overflows

Search for package or bug name: Reporting problems