Vulnerabilities with the libgdiplus packages

[mohanselvaraj22]

Hi All,

We are using libpdfium assembly on our end for converting the PDF pages to images. In the Linux environment, the additional packages(libgdiplus) have to be installed for using the libpdfium assembly by using the below command.

RUN apt-get update \ && apt-get install -y --allow-unauthenticated \ libc6-dev \ libgdiplus \ libx11-dev

But after installing these packages we have scanned and found “24 critical 103 major and 37 minor” vulnerabilities(Common Vulnerability Exposure ). Please find the vulnerability count along with the filename. Can you please provide any suggestions for resolving the vulnerability on our end?

FilePaths	Critical count(vulnCount + vulnCountCVSSV3)	Total
libe_sqlite3.so	3 + 3	6
libxml2.so	1 + 0	1
e_sqlite3.dll && libe_sqlite3.so	4 + 4	8
liblz4.so	1 + 1	2
ibpng16.so	1 + 1	2
libc-2.24.so	2 + 0	2
libudev.so.1.6.5 && libsystemd.so.0.17.0	1 + 0	1
libX11.so	1 + 1	2
Total	24