MGASA-2020-0459 Updated sam2p package fixes security vulnerabilities
In sam2p 0.49.3, a heap-based buffer overflow exists in the pcxLoadImage24 function of the file inpcx.cpp. CVE-2017-14628. In sam2p 0.49.3, the inxpmreader function in inxpm.cpp has an integer signedness error, leading to a crash when writing to an out-of-bounds array element. CVE-2017-14629. In...