Debian Racket vulnerabilities

5 known vulnerabilities affecting debian/racket.

Total CVEs

5

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

MEDIUM3LOW2

Vulnerabilities

Page 1 of 1

CVE-2021-32773MEDIUMCVSS 6.1fixed in racket 7.9+dfsg1-2 (bookworm)2021

CVE-2021-32773 [MEDIUM] CVE-2021-32773: racket - Racket is a general-purpose programming language and an ecosystem for language-o... Racket is a general-purpose programming language and an ecosystem for language-oriented programming. In versions prior to 8.2, code evaluated using the Racket sandbox could cause system modules to incorrectly use attacker-created modules instead of their intended dependencies. This could allow system functions to be controlled by the attacker, giving access to faci

CVE-2009-3546MEDIUMCVSS 7.5fixed in libgd2 2.0.36~rc1~dfsg-3.1 (bookworm)2009

CVE-2009-3546 [HIGH] CVE-2009-3546: libgd2 - The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5.3.1, and t... The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5.3.1, and the GD Graphics Library 2.x, does not properly verify a certain colorsTotal structure member, which might allow remote attackers to conduct buffer overflow or buffer over-read attacks via a crafted GD file, a different vulnerability than CVE-2009-3293. NOTE: some of these details are obtaine

CVE-2007-3996MEDIUMCVSS 6.8fixed in libgd2 2.0.35.dfsg-1 (bookworm)2007

CVE-2007-3996 [MEDIUM] CVE-2007-3996: libgd2 - Multiple integer overflows in libgd in PHP before 5.2.4 allow remote attackers t... Multiple integer overflows in libgd in PHP before 5.2.4 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large (1) srcW or (2) srcH value to the (a) gdImageCopyResized function, or a large (3) sy (height) or (4) sx (width) value to the (b) gdImageCreate or the (c) gdImageCreateTrueColor function. Scope:

CVE-2007-3476LOWCVSS 4.3fixed in libgd2 2.0.35.dfsg-1 (bookworm)2007

CVE-2007-3476 [MEDIUM] CVE-2007-3476: libgd2 - Array index error in gd_gif_in.c in the GD Graphics Library (libgd) before 2.0.3... Array index error in gd_gif_in.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash and heap corruption) via large color index values in crafted image data, which results in a segmentation fault. Scope: local bookworm: resolved (fixed in 2.0.35.dfsg-1) bullseye: resolved (fixed in 2.0.35.dfsg-1)

CVE-2007-3477LOWCVSS 5.0fixed in libgd2 2.0.35.dfsg-1 (bookworm)2007

CVE-2007-3477 [MEDIUM] CVE-2007-3477: libgd2 - The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd)... The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd) before 2.0.35 allow attackers to cause a denial of service (CPU consumption) via a large (1) start or (2) end angle degree value. Scope: local bookworm: resolved (fixed in 2.0.35.dfsg-1) bullseye: resolved (fixed in 2.0.35.dfsg-1) forky: resolved (fixed in 2.0.35.dfsg-1) sid: resolved (f