Lucene search
AmazonALAS-2023-1721HistoryMar 30, 2023 - 10:50 p.m.
Important: gd
2023-03-3022:50:00
alas.aws.amazon.com
9
0.002 Low
EPSS
Percentile
64.2%
Issue Overview:
DISPUTED gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) through 2.3.2 has a double free. NOTE: the vendor’s position is “The GD2 image format is a proprietary image format of libgd. It has to be regarded as being obsolete, and should only be used for development and testing purposes.” (CVE-2021-40145)
Affected Packages:
gd
Issue Correction:
Run yum update gd to update your system.
New Packages:
i686:
gd-devel-2.0.35-11.11.amzn1.i686
gd-2.0.35-11.11.amzn1.i686
gd-progs-2.0.35-11.11.amzn1.i686
gd-debuginfo-2.0.35-11.11.amzn1.i686
src:
gd-2.0.35-11.11.amzn1.src
x86_64:
gd-devel-2.0.35-11.11.amzn1.x86_64
gd-2.0.35-11.11.amzn1.x86_64
gd-progs-2.0.35-11.11.amzn1.x86_64
gd-debuginfo-2.0.35-11.11.amzn1.x86_64
Additional References
Red Hat: CVE-2021-40145
Mitre: CVE-2021-40145
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Amazon Linux | 1 | i686 | gd-devel | < 2.0.35-11.11.amzn1 | gd-devel-2.0.35-11.11.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | gd | < 2.0.35-11.11.amzn1 | gd-2.0.35-11.11.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | gd-progs | < 2.0.35-11.11.amzn1 | gd-progs-2.0.35-11.11.amzn1.i686.rpm |
| Amazon Linux | 1 | i686 | gd-debuginfo | < 2.0.35-11.11.amzn1 | gd-debuginfo-2.0.35-11.11.amzn1.i686.rpm |
| Amazon Linux | 1 | x86_64 | gd-devel | < 2.0.35-11.11.amzn1 | gd-devel-2.0.35-11.11.amzn1.x86_64.rpm |
| Amazon Linux | 1 | x86_64 | gd | < 2.0.35-11.11.amzn1 | gd-2.0.35-11.11.amzn1.x86_64.rpm |
| Amazon Linux | 1 | x86_64 | gd-progs | < 2.0.35-11.11.amzn1 | gd-progs-2.0.35-11.11.amzn1.x86_64.rpm |
| Amazon Linux | 1 | x86_64 | gd-debuginfo | < 2.0.35-11.11.amzn1 | gd-debuginfo-2.0.35-11.11.amzn1.x86_64.rpm |
Related
nessus
nessus
EulerOS Virtualization 3.0.2.6 : gd (EulerOS-SA-2021-2891)
2022-01-06 00:00:00
EulerOS Virtualization 3.0.2.0 : gd (EulerOS-SA-2021-2850)
2021-12-29 00:00:00
Photon OS 2.0: Libgd PHSA-2021-2.0-0390
2021-09-21 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for gd (EulerOS-SA-2021-2850)
2021-12-30 00:00:00
Huawei EulerOS: Security Advisory for gd (EulerOS-SA-2022-1163)
2022-02-24 00:00:00
Huawei EulerOS: Security Advisory for gd (EulerOS-SA-2021-2891)
2021-12-31 00:00:00
cvelist
cvelist
CVE-2021-40145
2021-08-26 00:34:17
photon
photon
Important Photon OS Security Update - PHSA-2021-0100
2021-09-16 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2021-2.0-0390
2021-09-10 00:00:00
Important Photon OS Security Update - PHSA-2021-0298
2021-09-14 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-08-30 07:07:16
ubuntucve
ubuntucve
CVE-2021-40145
2021-08-26 00:00:00
alpinelinux
alpinelinux
CVE-2021-40145
2021-08-26 01:15:11
cve
cve
CVE-2021-40145
2021-08-26 01:15:11
amazon
amazon
Important: gd
2023-05-11 17:49:00
cbl_mariner
cbl_mariner
CVE-2021-40145 affecting package gd 2.3.0-2.4
2021-12-17 20:09:30
CVE-2021-40145 affecting package gd for versions less than 2.3.0-5
2022-04-26 19:57:37
prion
prion
Double free
2021-08-26 01:15:00
debiancve
debiancve
CVE-2021-40145
2021-08-26 01:15:11
cloudlinux
cloudlinux
Fix of CVE: CVE-2017-6363, CVE-2021-40145
2021-10-19 13:31:03
Fix of CVE: CVE-2017-6363, CVE-2021-40145
2021-10-28 16:47:16
mageia
mageia
Updated libgd packages fix security vulnerability
2021-09-23 07:49:29
cloudfoundry
cloudfoundry
USN-5068-1: GD library vulnerabilities | Cloud Foundry
2021-10-04 00:00:00
osv
osv
libgd2 vulnerabilities
2021-09-08 13:08:35
ubuntu
ubuntu
GD library vulnerabilities
2021-09-08 00:00:00