6 matches found
[SECURITY] Fedora 43 Update: perl-GD-2.86-1.fc43
This is a auto-loadable interface module for GD, a popular library for creating and manipulating PNG files. With this library you can create PNG images on the fly or modify existing files...
CVE-2026-11526 GD versions before 2.86 for Perl allow OS command injection and file overwrite via a 2-arg open() of filename arguments in _make_filehandle
GD versions before 2.86 for Perl allow OS command injection and file overwrite via a 2-arg open of filename arguments in makefilehandle. GD::Image::makefilehandle opens a filename argument with Perl's 2-arg open, so a filename that begins or ends with a pipe "| cmd", "cmd |" or begins with a...
perl-GD-2.860.0-1.1 on GA media (moderate)
perl-GD-2.860.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:11017-1 Rating: moderate Cross-References: CVE-2026-11526 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
OPENSUSE-SU-2026:11017-1 perl-GD-2.860.0-1.1 on GA media
These are all security issues fixed in the perl-GD-2.860.0-1.1 package on the GA media of openSUSE Tumbleweed...
PT-2026-49088
Name of the Vulnerable Software and Affected Versions GD for Perl versions prior to 2.86 Description The make filehandle function in GD::Image uses Perl's 2-arg open to process filename arguments. This allows OS command injection and file overwrite if a filename begins or ends with a pipe e.g., "...
OPENSUSE-SU-2024:11852-1 perl-GD-2.76-1.1 on GA media
These are all security issues fixed in the perl-GD-2.76-1.1 package on the GA media of openSUSE Tumbleweed...