Wind River Support Network

HomeDefectsLIN10-9028
Fixed

LIN10-9028 : Security Advisory - gd - CVE-2021-40145

Created: Aug 26, 2021    Updated: Oct 11, 2021
Resolved Date: Oct 11, 2021
Found In Version: 10.17.41.1
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace

Description

** DISPUTED ** gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) through 2.3.2 has a double free. NOTE: the vendor's position is "The GD2 image format is a proprietary image format of libgd. It has to be regarded as being obsolete, and should only be used for development and testing purposes."

CREATE(Triage):(User=admin) [CVE-2021-40145|https://nvd.nist.gov/vuln/detail/CVE-2021-40145]

CVEs


Live chat
Online