Extended Lifecycle Support CVE dashboard by TuxСare

CVEs Releases Projects

CVE-2021-40812

Updated: 2022-05-25 08:20:06.526894

Description:

The GD Graphics Library (aka LibGD) through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x MEDIUM 4.3
CVSS Version 3.x MEDIUM 6.5

Status

OS name Project name Version Status Errata Last updated
CentOS 6 ELS gd 2.0.35 Not vulnerable 2021-11-02 14:03:16.938827
CentOS 8.4 ELS gd 2.2.5 Ignored 2022-02-03 14:47:48.799614
CentOS 8.5 ELS gd 2.2.5 Ignored 2022-02-10 08:36:20.976505
CloudLinux 6 ELS gd 2.0.35 Not vulnerable 2021-11-02 14:03:16.946751
Oracle Linux 6 ELS gd 2.0.35 Not vulnerable 2021-11-02 14:03:16.955068
Ubuntu 16.04 ELS gd 2.1.1-4ubuntu0.16.04.12 Released CLSA-2021:1635459219 2021-11-02 14:03:16.965896

Statement

Will not fix: low score