[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-DEBIAN-CVE-2009-3546":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":16,"duplicates":19,"related":20,"reserved_at":9,"published_at":21,"modified_at":22,"state":9,"summary":23,"references_raw":25,"kevs":32,"epss":9,"epss_history":33,"metrics":34,"affected":35},"DEBIAN-CVE-2009-3546","The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5.3.1, and the GD Graphics Library 2.x, does not properly verify a certain colorsTotal structure member, which might allow remote attackers to conduct buffer overflow or buffer over-read attacks via a crafted GD file, a different vulnerability than CVE-2009-3293. NOTE: some of these details are obtained from third party information.",null,[],[],[],[14],{"_key":15},"CVE-2009-3546",[17],{"_key":18},"DSA-1936-1",[],[],"2009-10-19T20:00:00.657Z","2026-04-28T20:04:35.600921Z",{"cisa_kev":24,"cisa_ransomware":24,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[26],{"url":27,"sources":28,"tags":30},"https://security-tracker.debian.org/tracker/CVE-2009-3546",[29],"osv_debian",[31],"Advisory",[],[],[],[36,51,59],{"ecosystem":37,"name":38,"vendor":39,"product":38,"cpe_part":9,"purl_type":40,"purl_namespace":39,"purl_name":38,"source":9,"versions":41},"Debian","libgd2","debian","deb",[42,48,49,50],{"version":43,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":46,"version_end_type":47,"fixed_in":9},"lt2_0_36~rc1~dfsg_3_1",true,"ecosystem","2.0.36~rc1~dfsg-3.1","excluding",{"version":43,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":46,"version_end_type":47,"fixed_in":9},{"version":43,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":46,"version_end_type":47,"fixed_in":9},{"version":43,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":46,"version_end_type":47,"fixed_in":9},{"ecosystem":37,"name":52,"vendor":39,"product":52,"cpe_part":9,"purl_type":40,"purl_namespace":39,"purl_name":52,"source":9,"versions":53},"libwmf",[54,56,57,58],{"version":55,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"all",{"version":55,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":55,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":55,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":37,"name":60,"vendor":39,"product":60,"cpe_part":9,"purl_type":40,"purl_namespace":39,"purl_name":60,"source":9,"versions":61},"racket",[62,65,66,67],{"version":63,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":64,"version_end_type":47,"fixed_in":9},"lt5_0_2_1","5.0.2-1",{"version":63,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":64,"version_end_type":47,"fixed_in":9},{"version":63,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":64,"version_end_type":47,"fixed_in":9},{"version":63,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":64,"version_end_type":47,"fixed_in":9}]