libgdiplus
libgdiplus copied to clipboard
Published
20 hours ago •
mono
mono
Vulnerabilities with the libgdiplus packages
Hi All,
We are using libpdfium assembly on our end for converting the PDF pages to images. In the Linux environment, the additional packages(libgdiplus) have to be installed for using the libpdfium assembly by using the below command.
RUN apt-get update \ && apt-get install -y --allow-unauthenticated \ libc6-dev \ libgdiplus \ libx11-dev
But after installing these packages we have scanned and found “24 critical 103 major and 37 minor” vulnerabilities(Common Vulnerability Exposure ). Please find the vulnerability count along with the filename. Can you please provide any suggestions for resolving the vulnerability on our end?
| FilePaths | Critical count(vulnCount + vulnCountCVSSV3) | Total |
|---|---|---|
| libe_sqlite3.so | 3 + 3 | 6 |
| libxml2.so | 1 + 0 | 1 |
| e_sqlite3.dll && libe_sqlite3.so | 4 + 4 | 8 |
| liblz4.so | 1 + 1 | 2 |
| ibpng16.so | 1 + 1 | 2 |
| libc-2.24.so | 2 + 0 | 2 |
| libudev.so.1.6.5 && libsystemd.so.0.17.0 | 1 + 0 | 1 |
| libX11.so | 1 + 1 | 2 |
| Total | 24 |
