CLSA-2026-1777970160 gd: Fix of CVE-2021-40145

CVE-2021-40145: fix double free in gdImageGd2Ptr...

CLSA-2026-1776445382 gd: Fix of CVE-2021-40145

Fix CVE-2021-40145: double-free in gdImageGd2Ptr...

[SECURITY] [DLA 4411-1] libgd2 security update

Debian LTS Advisory DLA-4411-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin December 16, 2025 https://wiki.debian.org/LTS Package : libgd2 Version : 2.3.0-2+deb11u1 CVE ID : CVE-2021-38115 CVE-2021-40145 CVE-2021-40812 Debian Bug : 991912 Vulnerabilities were...

Debian dla-4411 : libgd-dev - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4411 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4411-1 [email protected]...

BELL-CVE-2025-40145 CVE-2025-40145 does not affect BellSoft software

Bulletin has no description...

CVE-2025-40145

In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Fix double cleanup on devmaddactionorreset failure When devmaddactionorreset fails, it calls the passed cleanup function. Hence the caller must not repeat that cleanup. Replace the "goto errregulatorfree" by the actu...

EUVD-2025-40145

Malicious code in cindy-brongkos22-riris npm...

MAL-2025-40145 Malicious code in yam-cherry-lfhb (npm)

The package yam-cherry-lfhb was found to contain malicious code...

Linux Distros Unpatched Vulnerability : CVE-2021-40145

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gdImageGd2Ptr in gdgd2.c in the GD Graphics Library aka LibGD through 2.3.2 has a double free. NOTE: the vendor's position is The GD2 image format is a...

CVE-2023-40145

creationtimestamp| type| source ---|---|--- 2023-10-20 00:34:48+00:00| seen| https://t.me/cibsecurity/72627...

CVE-2023-40145

CVE-2023-40145 is an OS Command Injection in Weintek cMT3000 HMI Web CGI (cgi-bin area). The vulnerability allows an anonymous attacker, after login, to execute arbitrary commands on affected devices. The issue is classified under CWE-78 (OS Command Injection) and is part of a pair of flaws affec...

CVE-2023-40145 Weintek cMT3000 HMI Web CGI OS Command Injection

In Weintek's cMT3000 HMI Web CGI device, an anonymous attacker can execute arbitrary commands after login to the device...

CVE-2023-40145 Weintek cMT3000 HMI Web CGI OS Command Injection

In Weintek's cMT3000 HMI Web CGI device, an anonymous attacker can execute arbitrary commands after login to the device...

BELL-CVE-2021-40145 CVE-2021-40145 does not affect BellSoft software

Bulletin has no description...

Amazon Linux 2 : gd (ALAS-2023-2044)

The version of gd installed on the remote host is prior to 2.0.35-27. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2044 advisory. DISPUTED gdImageGd2Ptr in gdgd2.c in the GD Graphics Library aka LibGD through 2.3.2 has a double free. NOTE: the vendor's position is...

Important: gd

Issue Overview: DISPUTED gdImageGd2Ptr in gdgd2.c in the GD Graphics Library aka LibGD through 2.3.2 has a double free. NOTE: the vendor's position is "The GD2 image format is a proprietary image format of libgd. It has to be regarded as being obsolete, and should only be used for development and...

Amazon Linux AMI : gd (ALAS-2023-1721)

The version of gd installed on the remote host is prior to 2.0.35-11.11. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1721 advisory. DISPUTED gdImageGd2Ptr in gdgd2.c in the GD Graphics Library aka LibGD through 2.3.2 has a double free. NOTE: the vendor's position ...

CVE-2022-40145

creationtimestamp| type| source ---|---|--- 2022-12-22 05:38:07+00:00| seen| https://t.me/cibsecurity/55054...

io.fabric8:fabric8-maven-plugin (=1.2.0.redhat-133), it.uniroma2.art.maple:maple-karaf-distribution (>=0.0.3 <=0.0.5) +2 more potentially affected by CVE-2022-40145 via org.apache.karaf:apache-karaf (>=4.4.1 <=4.4.11)

org.apache.karaf:apache-karaf MAVEN version =4.4.1, =0.0.3, =0.0.5 - org.apache.camel.karaf:camel-test-karaf =3.19.0 - org.apache.karaf.demos:web =4.1.7 Source cves: CVE-2022-40145 Source advisory: OSV:GHSA-C2P4-8MVV-RWMV...

ch.sourcepond.commons:smartswitch-tests (>=2.0.0 <=4.0.2), ch.sourcepond.io:checksum-tests (>=1.0.3 <=4.0.3) +47 more potentially affected by CVE-2022-40145 via org.apache.karaf:apache-karaf (>=2.0.0 <=4.3.7)

org.apache.karaf:apache-karaf MAVEN version =2.0.0, =2.0.0, =1.0.3, =1.0.0, =1.0.0, =1.5, =1.5.6, =4.4.1, =7.2.0, =6.3.0, =1.1.2, =1.0.0, =2.0.0, =2.0.6, =4.2.8.hyte-4280, =hyte-mq-4.3.7.hyte-43072 and more Source cves: CVE-2022-40145 Source advisory: OSV:GHSA-C2P4-8MVV-RWMV...