This repository was archived by the owner on Mar 7, 2025. It is now read-only.
This repository was archived by the owner on Mar 7, 2025. It is now read-only.
Vulnerabilities with the libgdiplus packages #718
Description
Hi All,
We are using libpdfium assembly on our end for converting the PDF pages to images. In the Linux environment, the additional packages(libgdiplus) have to be installed for using the libpdfium assembly by using the below command.
RUN apt-get update \ && apt-get install -y --allow-unauthenticated \ libc6-dev \ libgdiplus \ libx11-dev
But after installing these packages we have scanned and found “24 critical 103 major and 37 minor” vulnerabilities(Common Vulnerability Exposure ). Please find the vulnerability count along with the filename. Can you please provide any suggestions for resolving the vulnerability on our end?
| FilePaths | Critical count(vulnCount + vulnCountCVSSV3) | Total |
|---|---|---|
| libe_sqlite3.so | 3 + 3 | 6 |
| libxml2.so | 1 + 0 | 1 |
| e_sqlite3.dll && libe_sqlite3.so | 4 + 4 | 8 |
| liblz4.so | 1 + 1 | 2 |
| ibpng16.so | 1 + 1 | 2 |
| libc-2.24.so | 2 + 0 | 2 |
| libudev.so.1.6.5 && libsystemd.so.0.17.0 | 1 + 0 | 1 |
| libX11.so | 1 + 1 | 2 |
| Total | 24 |