2 matches found
MGASA-2015-0474 Updated potrace packages fix security vulnerabilities
Potrace before 1.13 has some critical bugs in the processing of BMP files. These bugs allowed the program to be crashed, or potentially to be abused in other ways, by feeding it specially crafted BMP files, due to heap overflow, null pointer dereference, and divide by zero issues...
MGASA-2015-0161 Updated potrace packages fix CVE-2013-7437
Updated potrace packages fix security vulnerability: Multiple integer overflows in potrace 1.11 allow remote attackers to cause a denial of service crash via large dimensions in a BMP image, which triggers a buffer overflow CVE-2013-7437...