Extended Lifecycle Support CVE dashboard by TuxСare

CVEs Releases Projects

CVE-2021-38115

Updated: 2022-05-25 08:22:50.471388

Description:

read_header_tga in gd_tga.c in the GD Graphics Library (aka LibGD) through 2.3.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x MEDIUM 4.3
CVSS Version 3.x MEDIUM 6.5

Status

OS name Project name Version Status Errata Last updated
CentOS 6 ELS gd 2.0.35 Not vulnerable 2021-11-02 14:03:16.905164
CentOS 8.4 ELS gd 2.2.5 Ignored 2022-02-04 02:37:33.830036
CentOS 8.5 ELS gd 2.2.5 Ignored 2022-02-10 08:36:21.112042
CloudLinux 6 ELS gd 2.0.35 Not vulnerable 2021-11-02 14:03:16.913696
Oracle Linux 6 ELS gd 2.0.35 Not vulnerable 2021-11-02 14:03:16.9224
Ubuntu 16.04 ELS gd 2.1.1-4ubuntu0.16.04.12 Released CLSA-2021:1635459219 2021-11-02 14:03:16.929961

Statement

Will not fix: low score