Mageia: Security Advisory (MGASA-2017-0073)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for potrace FEDORA-2017-44bfb0f3e5

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : potrace (openSUSE-2017-319)

This update for potrace to version 1.14 fixes the following issues : Security issues fixed : - CVE-2016-8685, CVE-2016-8686: Bugs triggered by malformed BMP files have been fixed boo1005026. Bugfixes : - Error reporting has been improved. - The image size is now truncated when the bitmap data end...

CVE-2016-8686

Potrace 1.13 has CVE-2016-8686 (and CVE-2016-8685) vulnerabilities. The bm_new function in bitmap.h can trigger a memory allocation failure when processing a crafted BMP image, leading to a remote impact. Additionally, the findnext function in decompose.c can cause invalid memory access/DoS via m...