Information on source package cimg

Available versions

ReleaseVersion
buster2.4.5+dfsg-1+deb10u1
bullseye2.9.4+dfsg-2
bookworm3.2.1+dfsg-1
trixie3.2.1+dfsg-1
sid3.2.1+dfsg-1

Open issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2024-26540vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA heap-based buffer overflow in Clmg before 3.3.3 can occur via a craf ...
CVE-2022-1325vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedA flaw was found in Clmg, where with the help of a maliciously crafted ...
CVE-2019-13568vulnerable (no DSA)fixedfixedfixedfixedCImg through 2.6.7 has a heap-based buffer overflow in _load_bmp in CI ...

Open unimportant issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2018-7587vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in CImg v.220. DoS occurs when loading a craft ...

Resolved issues

BugDescription
CVE-2020-25693A flaw was found in CImg in versions prior to 2.9.3. Integer overflows ...
CVE-2019-1010174CImg The CImg Library v.2.3.3 and earlier is affected by: command inje ...
CVE-2018-7641An issue was discovered in CImg v.220. A heap-based buffer over-read i ...
CVE-2018-7640An issue was discovered in CImg v.220. A heap-based buffer over-read i ...
CVE-2018-7639An issue was discovered in CImg v.220. A heap-based buffer over-read i ...
CVE-2018-7638An issue was discovered in CImg v.220. A heap-based buffer over-read i ...
CVE-2018-7637An issue was discovered in CImg v.220. A heap-based buffer over-read i ...
CVE-2018-7589An issue was discovered in CImg v.220. A double free in load_bmp in CI ...
CVE-2018-7588An issue was discovered in CImg v.220. A heap-based buffer over-read i ...

Security announcements

DSA / DLADescription
DLA-2462-1cimg - security update
DLA-2421-1cimg - security update
DLA-1934-1cimg - security update

Search for package or bug name: Reporting problems