Known Vulnerabilities for products from Libgd
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Libgd".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-40812 | The GD Graphics Library (aka LibGD) through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPut... | 6.5 - MEDIUM | 2021-09-08 | 2021-09-15 |
| CVE-2021-40145 | ** DISPUTED ** gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) through 2.3.2 has a double free. NOTE: the ve... | 7.5 - HIGH | 2021-08-26 | 2023-11-07 |
| CVE-2021-38115 | read_header_tga in gd_tga.c in the GD Graphics Library (aka LibGD) through 2.3.2 allows remote attackers to cause a denial of... | 6.5 - MEDIUM | 2021-08-04 | 2021-08-11 |
| CVE-2019-11038 | When using the gdImageCreateFromXbm() function in the GD Graphics Library (aka LibGD) 2.2.5, as used in the PHP GD extension ... | 5.3 - MEDIUM | 2019-06-19 | 2023-11-07 |
| CVE-2019-6978 | The GD Graphics Library (aka LibGD) 2.2.5 has a double free in the gdImage*Ptr() functions in gd_gif_out.c, gd_jpeg.c, and gd... | 9.8 - CRITICAL | 2019-01-28 | 2023-11-07 |
| CVE-2019-6977 | gdImageColorMatch in gd_color_match.c in the GD Graphics Library (aka LibGD) 2.2.5, as used in the imagecolormatch function i... | 8.8 - HIGH | 2019-01-27 | 2023-11-07 |
| CVE-2018-1000222 | Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Co... | 8.8 - HIGH | 2018-08-20 | 2023-11-07 |
| CVE-2018-14553 | gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL pointer dereference allowing attackers to crash an applicati... | 7.5 - HIGH | 2020-02-11 | 2023-11-07 |
| CVE-2017-6363 | ** DISPUTED ** In the GD Graphics Library (aka LibGD) through 2.2.5, there is a heap-based buffer over-read in tiffWriter in ... | 8.1 - HIGH | 2020-02-27 | 2023-11-07 |
| CVE-2017-6362 | Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of s... | 7.5 - HIGH | 2017-09-07 | 2023-11-07 |
| CVE-2016-10168 | Integer overflow in gd_io.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified i... | 7.8 - HIGH | 2017-03-15 | 2018-05-04 |
| CVE-2016-10167 | The gdImageCreateFromGd2Ctx function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers ... | 5.5 - MEDIUM | 2017-03-15 | 2018-05-04 |
| CVE-2016-10166 | Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2... | 9.8 - CRITICAL | 2017-03-15 | 2017-11-04 |
| CVE-2016-9933 | Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library (aka libgd) before 2.2... | 7.5 - HIGH | 2017-01-04 | 2018-05-04 |
| CVE-2016-9317 | The gdImageCreate function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of s... | 5.5 - MEDIUM | 2017-01-26 | 2017-11-04 |
| CVE-2016-8670 | Integer signedness error in the dynamicGetbuf function in gd_io_dp.c in the GD Graphics Library (aka libgd) through 2.2.3, as... | 9.8 - CRITICAL | 2017-01-04 | 2023-11-07 |
| CVE-2016-7568 | Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka libgd) through 2.2.3, as used in... | 9.8 - CRITICAL | 2016-09-28 | 2019-03-07 |
| CVE-2016-6912 | Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote att... | 9.8 - CRITICAL | 2017-01-26 | 2017-11-04 |
| CVE-2016-6911 | The dynamicGetbuf function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of s... | 5.5 - MEDIUM | 2017-01-26 | 2017-11-04 |
| CVE-2016-6906 | The read_image_tga function in gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause ... | 5.5 - MEDIUM | 2017-03-15 | 2017-11-04 |
Known software with vulnerabilities from Libgd
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Libgd | Libgd | 1.3.0 |