51 matches found
MiracleLinux 9 : autotrace-0.31.1-65.el9 (AXSA:2023-5497:01)
The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-5497:01 advisory. autotrace: heap-buffer overflow via the ReadImage at input-bmp.c CVE-2022-32323 Tenable has extracted the preceding description block directly from the...
EUVD-2017-18121
Malware in sbrugna...
EUVD-2017-18126
Malware in sbrugna...
CVE-2021-42028
A vulnerability has been identified in syngo fastView All versions. The affected application lacks proper validation of user-supplied data when parsing BMP files. This could result in an out-of-bounds write past the end of an allocated structure. An attacker could leverage this vulnerability to...
autotrace: heap-buffer overflow via the ReadImage() at input-bmp.c
A buffer overflow flaw was found in the autotrace package. This flaw allows an attacker to trick the user into opening a maliciously crafted BMP image, triggering arbitrary code execution or causing the application to crash...
SUSE CVE-2017-9170
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-bmp.c:370:25...
SUSE CVE-2017-9176
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid write and SEGV, related to the ReadImage function in input-bmp.c:370:25...
SUSE CVE-2017-9178
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid write and SEGV, related to the ReadImage function in input-bmp.c:421:11...
SUSE CVE-2017-9183
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:309:7...
SUSE CVE-2017-9181
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid write and SEGV, related to the ReadImage function in input-bmp.c...
SUSE CVE-2017-9188
libautotrace.a in AutoTrace 0.31.1 has a "left shift ... cannot be represented in type int" issue in input-bmp.c:516:63...
SUSE CVE-2022-32323
AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660...
PT-2022-21228 · Autotrace +3 · Autotrace +3
Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.40.0 Description: A heap overflow issue was discovered in AutoTrace via the ReadImage function at input-bmp.c:660. Recommendations: For AutoTrace version 0.40.0, consider restricting access to the ReadImage function as a...
CVE-2019-19004
A biWidthbiBitCnt integer overflow in input-bmp.c in autotrace 0.31.1 allows attackers to provide an unexpected input value to malloc via a malformed bitmap image...
UBUNTU-CVE-2018-7554
There is an invalid free in ReadImage in input-bmp.ci that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact...
sam2p denial of service vulnerability (CNVD-2018-04648)
sam2p is a command-line utility that can convert many raster bitmap image formats such as GIF, JPG/JPEG and PNG to PostScript or PDF files. A denial of service vulnerability exists in sam2p 0.49.4. The vulnerability arises due to an invalid release of ReadImage in input-bmp.ci in sam2p, which can...
sam2p integer overflow vulnerability (CNVD-2017-36354)
sam2p is a command-line utility that can convert many raster bitmap image formats such as GIF, JPG/JPEG and PNG to PostScript or PDF files. An integer overflow vulnerability exists in input-bmp.ci in the ReadImage function in sam2p version 0.49.4, for which there is currently no detailed...
AutoTrace Buffer Overflow Vulnerability (CNVD-2017-08529)
AutoTrace is a set of software for converting bitmap files Bitmap to vector files Vector. A buffer overflow vulnerability exists in the input-bmp.c:314:7 of the libautotrace.a file in AutoTrace version 0.31.1. An attacker could exploit this vulnerability to cause a denial of service or execute...
AutoTrace Buffer Overflow Vulnerability (CNVD-2017-08530)
AutoTrace is a set of software for converting bitmap files Bitmap to vector files Vector. A buffer overflow vulnerability exists in the input-bmp.c:319:7 of the libautotrace.a file in AutoTrace version 0.31.1. An attacker could exploit this vulnerability to cause a denial of service or execute...
AutoTrace Denial of Service Vulnerability (CNVD-2017-08531)
AutoTrace is a set of software for converting bitmap files Bitmap to vector files Vector. A denial of service vulnerability exists in the input-bmp.c:326:17 of the libautotrace.a file in AutoTrace version 0.31.1. An attacker can exploit this vulnerability to cause a denial of service...