« List of all packages

conf-gd

Opam page: https://opam.ocaml.org/packages/conf-gd/

Versions

Version
conf-gd.1 (latest)

Vulnerable external dependencies (281)

Product For package Vendor Severity CVE Published
libpng-dev conf-gd.1 pnggroup Medium CVE-2026-22801 - LIBPNG has an integer truncation causing heap buffer over-read in png_image_write_* 1/12/2026
libpng-dev conf-gd.1 pnggroup Medium CVE-2026-22695 - LIBPNG has a heap buffer over-read in png_image_read_direct_scaled (regression from CVE-2025-65018 fix) 1/12/2026
zlib-dev conf-gd.1 zlib software Medium CVE-2026-22184 - zlib <= 1.3.1.2 untgz Global Buffer Overflow in TGZfname() 1/7/2026
libpng-dev conf-gd.1 pnggroup High CVE-2025-66293 - LIBPNG has an out-of-bounds read in png_image_read_composite 12/3/2025
libpng-dev conf-gd.1 pnggroup High CVE-2025-65018 - LIBPNG is vulnerable to a heap buffer overflow in `png_combine_row` triggered via `png_image_finish_read` 11/24/2025
libpng-dev conf-gd.1 pnggroup High CVE-2025-64720 - LIBPNG is vulnerable to a buffer overflow in `png_image_read_composite` via incorrect palette premultiplication 11/24/2025
libpng-dev conf-gd.1 pnggroup Medium CVE-2025-64506 - LIBPNG is vulnerable to a heap buffer over-read in `png_write_image_8bit` with grayscale+alpha or RGB/RGBA images 11/24/2025
libpng-dev conf-gd.1 pnggroup Medium CVE-2025-64505 - LIBPNG is vulnerable to a heap buffer overflow in `png_do_quantize` via malformed palette index 11/24/2025
freetype-dev conf-gd.1 FreeType Critical CVE-2025-27363 3/11/2025
freetype-dev conf-gd.1 FreeType Medium CVE-2025-23022 1/10/2025
zlib-dev conf-gd.1 n/a High CVE-2023-45853 10/14/2023
libjpeg-turbo-dev conf-gd.1 n/a Medium CVE-2023-2804 5/25/2023
zlib-dev conf-gd.1 n/a Critical CVE-2022-37434 8/5/2022
freetype-dev conf-gd.1 n/a Unknown CVE-2022-27406 4/22/2022
freetype-dev conf-gd.1 n/a Unknown CVE-2022-27405 4/22/2022
freetype-dev conf-gd.1 n/a Unknown CVE-2022-27404 4/22/2022
libjpeg-turbo-dev conf-gd.1 n/a Unknown CVE-2021-46822 6/18/2022
libpng-dev conf-gd.1 n/a Unknown CVE-2021-4214 8/24/2022
libgd-dev conf-gd.1 n/a Medium CVE-2021-40812 9/8/2021
gd-dev conf-gd.1 n/a Medium CVE-2021-40812 9/8/2021