DEBIAN-CVE-2007-3477

See a problem?
Please try reporting it to the source first.
Source
https://security-tracker.debian.org/tracker/CVE-2007-3477
Import Source
https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json
JSON Data
https://api.osv.dev/v1/vulns/DEBIAN-CVE-2007-3477
Upstream
Published
2007-06-28T18:30:00Z
Modified
2025-11-20T10:09:54.609682Z
Summary
[none]
Details

The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd) before 2.0.35 allow attackers to cause a denial of service (CPU consumption) via a large (1) start or (2) end angle degree value.

References

Affected packages

Debian:11

libgd2

Package

Name
libgd2
Purl
pkg:deb/debian/libgd2?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.0.35.dfsg-1

Ecosystem specific 

{
    "urgency": "low"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"

libwmf

Package

Name
libwmf
Purl
pkg:deb/debian/libwmf?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.2.8.4-17
0.2.12-1
0.2.12-2
0.2.12-3
0.2.12-4
0.2.12-5
0.2.12-5.1
0.2.12-5.2
0.2.13-1
0.2.13-1.1
0.2.13-2

Ecosystem specific 

{
    "urgency": "unimportant"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"

racket

Package

Name
racket
Purl
pkg:deb/debian/racket?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.0.2-1

Ecosystem specific 

{
    "urgency": "unimportant"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"

Debian:12

libgd2

Package

Name
libgd2
Purl
pkg:deb/debian/libgd2?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.0.35.dfsg-1

Ecosystem specific 

{
    "urgency": "low"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"

libwmf

Package

Name
libwmf
Purl
pkg:deb/debian/libwmf?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.2.12-5.1
0.2.12-5.2
0.2.13-1
0.2.13-1.1
0.2.13-2

Ecosystem specific 

{
    "urgency": "unimportant"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"

racket

Package

Name
racket
Purl
pkg:deb/debian/racket?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.0.2-1

Ecosystem specific 

{
    "urgency": "unimportant"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"

Debian:13

libgd2

Package

Name
libgd2
Purl
pkg:deb/debian/libgd2?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.0.35.dfsg-1

Ecosystem specific 

{
    "urgency": "low"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"

libwmf

Package

Name
libwmf
Purl
pkg:deb/debian/libwmf?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.2.13-1.1
0.2.13-2

Ecosystem specific 

{
    "urgency": "unimportant"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"

racket

Package

Name
racket
Purl
pkg:deb/debian/racket?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.0.2-1

Ecosystem specific 

{
    "urgency": "unimportant"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"

Debian:14

libgd2

Package

Name
libgd2
Purl
pkg:deb/debian/libgd2?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.0.35.dfsg-1

Ecosystem specific 

{
    "urgency": "low"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"

libwmf

Package

Name
libwmf
Purl
pkg:deb/debian/libwmf?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.2.13-1.1
0.2.13-2

Ecosystem specific 

{
    "urgency": "unimportant"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"

racket

Package

Name
racket
Purl
pkg:deb/debian/racket?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.0.2-1

Ecosystem specific 

{
    "urgency": "unimportant"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2007-3477.json"