Vulnerabilities > Libgd > Libgd > 1.6.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-08 | CVE-2021-40812 | Out-of-bounds Read vulnerability in Libgd The GD Graphics Library (aka LibGD) through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks. | 6.5 |
| 2021-08-26 | CVE-2021-40145 | Double Free vulnerability in Libgd gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) through 2.3.2 has a double free. | 7.5 |
| 2021-08-04 | CVE-2021-38115 | Out-of-bounds Read vulnerability in Libgd read_header_tga in gd_tga.c in the GD Graphics Library (aka LibGD) through 2.3.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file. | 6.5 |
| 2020-02-27 | CVE-2017-6363 | Out-of-bounds Read vulnerability in Libgd In the GD Graphics Library (aka LibGD) through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gd_tiff.c. | 8.1 |
| 2017-03-15 | CVE-2016-10168 | Integer Overflow or Wraparound vulnerability in Libgd Integer overflow in gd_io.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors involving the number of horizontal and vertical chunks in an image. | 7.8 |
| 2017-03-15 | CVE-2016-10167 | Improper Input Validation vulnerability in Libgd The gdImageCreateFromGd2Ctx function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (application crash) via a crafted image file. | 5.5 |
| 2017-03-15 | CVE-2016-10166 | Integer Underflow (Wrap or Wraparound) vulnerability in Libgd Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors related to decrementing the u variable. | 9.8 |
| 2017-03-15 | CVE-2016-6906 | Out-of-bounds Read vulnerability in Libgd The read_image_tga function in gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file, related to the decompression buffer. | 5.5 |
| 2017-01-26 | CVE-2016-9317 | Improper Input Validation vulnerability in Libgd The gdImageCreate function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (system hang) via an oversized image. | 5.5 |
| 2017-01-26 | CVE-2016-6912 | Double Free vulnerability in Libgd Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via large width and height values. | 9.8 |