PT-2021-9015 · Autotrace +5 · Autotrace +5

Name of the Vulnerable Software and Affected Versions: autotrace version 0.31.1 Description: A biWidthbiBitCnt integer overflow in input-bmp.c allows attackers to provide an unexpected input value to malloc via a malformed bitmap image. This issue can be exploited by providing a specially crafted...

CVE-2020-27000

A vulnerability has been identified in JT2Go All versions V13.1.0.1, Teamcenter Visualization All versions V13.1.0.1. Affected applications lack proper validation of user-supplied data when parsing BMP files. This can result in a memory corruption condition. An attacker could leverage this...

OSV-2021-315 Global-buffer-overflow in Gfx::decode_frame

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30507 Crash type: Global-buffer-overflow READ 4 Crash state: Gfx::decodeframe Gfx::GIFImageDecoderPlugin::frame Gfx::GIFImageDecoderPlugin::bitmap...

EulerOS 2.0 SP3 : freerdp (EulerOS-SA-2021-1066)

According to the versions of the freerdp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In FreeRDP after 1.0 and before 2.0.0, there is an out-of-bound read in in updatereadbitmapdata that allows client memory to be read to an imag...

DEBIAN-CVE-2020-14409

SDL Simple DirectMedia Layer through 2.0.12 has an Integer Overflow and resultant SDLmemcpy heap corruption in SDLBlitCopy in video/SDLblitcopy.c via a crafted .BMP file...

UBUNTU-CVE-2020-14410

SDL Simple DirectMedia Layer through 2.0.12 has a heap-based buffer over-read in Blit3or4to3or4inversedrgb in video/SDLblitN.c via a crafted .BMP file...

UBUNTU-CVE-2020-14409

SDL Simple DirectMedia Layer through 2.0.12 has an Integer Overflow and resultant SDLmemcpy heap corruption in SDLBlitCopy in video/SDLblitcopy.c via a crafted .BMP file...

CVE-2021-21456

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

CVE-2021-21460

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

CVE-2021-21461

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated BMP file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

CVE-2021-21455

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

Qualcomm Wlan Firmware Input Validation Error Vulnerability

Qualcomm Wlan Firmware is a Wlan support firmware from Qualcomm Incorporated. The Qualcomm Wlan Firmware suffers from an input validation error vulnerability that arises from time bitmap length and bit duration fields not being properly validated...

DEBIAN-CVE-2020-27772

A flaw was found in ImageMagick in coders/bmp.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned int. This would most likely lead to an impact to application availability, but could...

Binary vulnerability in KINCO DTools (CNVD-2020-68574)

Shanghai BUCO Automation Co., Ltd. has been focusing on the research, development, production, sales and related technical services of core components for industrial automation equipment control and industrial IoT/Internet software and hardware, as well as providing customers with solutions for...

freetype security update

2.9.1-4.el83.1 - Test bitmap size earlier for PNGs - Fix memory leak in pngshim.c - Resolves: 1891905...

freetype security update

2.8-14.el79.1 - Test bitmap size earlier for PNGs - Fix memory leak in pngshim.c - Resolves: 1891635...

Memory Corruption Vulnerability in Electronic Seal System of Unicom Intelligent Security Technology Co.

Ltd. was established in August 2007, the scope of business includes: technology development, technology consulting, technology services, technology transfer, technology training and so on. The electronic seal system of CommuniLink Wisdom Security Technology Co., Ltd. has a memory corruption...

freerdp: out-of-bounds read in bitmap.c

libfreerdp/cache/bitmap.c in FreeRDP versions 1.0 through 2.0.0-rc4 has an Out of bounds read...

freerdp: double free in update_read_cache_bitmap_v3_order function

In FreeRDP greater than 1.2 and before 2.0.0, a double free in updatereadcachebitmapv3order crashes the client application if corrupted data from a manipulated server is parsed. This has been patched in 2.0.0...

OSV-2020-2122 Heap-buffer-overflow in void parquet::internal::DefRepLevelsToListInfo<int>

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26829 Crash type: Heap-buffer-overflow WRITE 1 Crash state: void parquet::internal::DefRepLevelsToListInfo parquet::internal::DefRepLevelsToBitmap parquet::arrow::StructReader::BuildArray...