Known Vulnerabilities for products from Libgd
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Libgd".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-40812 json | The GD Graphics Library (aka LibGD) through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPut... | 6.5 - MEDIUM | 2021-09-08 | 2021-09-15 |
| CVE-2021-40145 json | ** DISPUTED ** gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) through 2.3.2 has a double free. NOTE: the ve... | 7.5 - HIGH | 2021-08-26 | 2023-11-07 |
| CVE-2021-38115 json | read_header_tga in gd_tga.c in the GD Graphics Library (aka LibGD) through 2.3.2 allows remote attackers to cause a denial of... | 6.5 - MEDIUM | 2021-08-04 | 2021-08-11 |
| CVE-2019-11038 json | When using the gdImageCreateFromXbm() function in the GD Graphics Library (aka LibGD) 2.2.5, as used in the PHP GD extension ... | 5.3 - MEDIUM | 2019-06-19 | 2023-11-07 |
| CVE-2019-6978 json | The GD Graphics Library (aka LibGD) 2.2.5 has a double free in the gdImage*Ptr() functions in gd_gif_out.c, gd_jpeg.c, and gd... | 9.8 - CRITICAL | 2019-01-28 | 2023-11-07 |
| CVE-2019-6977 json | gdImageColorMatch in gd_color_match.c in the GD Graphics Library (aka LibGD) 2.2.5, as used in the imagecolormatch function i... | 8.8 - HIGH | 2019-01-27 | 2023-11-07 |
| CVE-2018-1000222 json | Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Co... | 8.8 - HIGH | 2018-08-20 | 2023-11-07 |
| CVE-2018-14553 json | gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a NULL pointer dereference allowing attackers to crash an applicati... | 7.5 - HIGH | 2020-02-11 | 2023-11-07 |
| CVE-2017-6363 json | ** DISPUTED ** In the GD Graphics Library (aka LibGD) through 2.2.5, there is a heap-based buffer over-read in tiffWriter in ... | 8.1 - HIGH | 2020-02-27 | 2023-11-07 |
| CVE-2017-6362 json | Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of s... | 7.5 - HIGH | 2017-09-07 | 2023-11-07 |
| CVE-2016-10168 json | Integer overflow in gd_io.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified i... | 7.8 - HIGH | 2017-03-15 | 2018-05-04 |
| CVE-2016-10167 json | The gdImageCreateFromGd2Ctx function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers ... | 5.5 - MEDIUM | 2017-03-15 | 2018-05-04 |
| CVE-2016-10166 json | Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2... | 9.8 - CRITICAL | 2017-03-15 | 2017-11-04 |
| CVE-2016-9933 json | Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library (aka libgd) before 2.2... | 7.5 - HIGH | 2017-01-04 | 2018-05-04 |
| CVE-2016-9317 json | The gdImageCreate function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of s... | 5.5 - MEDIUM | 2017-01-26 | 2017-11-04 |
| CVE-2016-8670 json | Integer signedness error in the dynamicGetbuf function in gd_io_dp.c in the GD Graphics Library (aka libgd) through 2.2.3, as... | 9.8 - CRITICAL | 2017-01-04 | 2023-11-07 |
| CVE-2016-7568 json | Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka libgd) through 2.2.3, as used in... | 9.8 - CRITICAL | 2016-09-28 | 2019-03-07 |
| CVE-2016-6912 json | Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote att... | 9.8 - CRITICAL | 2017-01-26 | 2017-11-04 |
| CVE-2016-6911 json | The dynamicGetbuf function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of s... | 5.5 - MEDIUM | 2017-01-26 | 2017-11-04 |
| CVE-2016-6906 json | The read_image_tga function in gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause ... | 5.5 - MEDIUM | 2017-03-15 | 2017-11-04 |
Known software with vulnerabilities from Libgd
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Libgd | Libgd | 1.3.0 |