Mageia: Security Advisory (MGASA-2017-0073)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 25 : potrace (2017-d7739ff31b)

This release consists of bugfixes and minor portability improvements. Some potential buffer overflows and arithmetic overflows were fixed, including CVE-2017-12067. A bug triggered by very large bitmaps has been fixed. Note that Tenable Network Security has extracted the preceding description blo...

Fedora Update for potrace FEDORA-2017-44bfb0f3e5

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated potrace packages fix security vulnerability

The findnext function in decompose.c in potrace 1.13 allows remote attackers to cause a denial of service invalid memory access and crash via a crafted BMP image. CVE-2016-8685 The bmnew function in bitmap.h in potrace 1.13 allows remote attackers to have unspecified impact via a crafted image,...

openSUSE Security Update : potrace (openSUSE-2017-319)

This update for potrace to version 1.14 fixes the following issues : Security issues fixed : - CVE-2016-8685, CVE-2016-8686: Bugs triggered by malformed BMP files have been fixed boo1005026. Bugfixes : - Error reporting has been improved. - The image size is now truncated when the bitmap data end...

CVE-2016-8685

The findnext function in decompose.c in potrace 1.13 allows remote attackers to cause a denial of service invalid memory access and crash via a crafted BMP image...

CVE-2016-8685

The findnext function in decompose.c in potrace 1.13 allows remote attackers to cause a denial of service invalid memory access and crash via a crafted BMP image...

CVE-2016-8685

The CVE-2016-8685 issue affects potrace 1.13, where the findnext function in decompose.c processes crafted BMPs to trigger denial of service via invalid memory access/crash. Affected deployments are mitigated by upgrading to patched releases (e.g., potrace 1.14+ as referenced in openSUSE advisori...

CVE-2016-8685

The findnext function in decompose.c in potrace 1.13 allows remote attackers to cause a denial of service invalid memory access and crash via a crafted BMP image...

potrace -- multiple memory failure

potrace reports: CVE-2016-8685: invalid memory access in findnext CVE-2016-8686: memory allocation failure...