4 matches found
CVE-2021-33479
CVE-2021-33479 affects GOCR (gocr) up to version 0.53-20200802, with a stack-based buffer overflow in measure_pitch() within pgm2asc.c. The connected Nessus/Gentoo/GSLAs references corroborate a vulnerable GOCR stack overflow vector; no public fix is detailed in the provided documents. Gentoo GLS...
CVE-2021-33481
CVE-2021-33481 is a stack-based buffer overflow in GOCR (GOCR
CVE-2021-33480
GOCR (pgm2asc.c: context_correction()) contains a use-after-free vulnerability in versions up to 0.53-20200802 (CVE-2021-33480). The issue is documented across multiple advisories (NVD/GOS OSV and Gentoo GLSA), with no publicly disclosed patch from the vendor in the provided sources. In Gentoo GL...
CVE-2005-1141
GOCR 0.40 is affected by an Integer overflow in the readpgm function of pnm.c when using the netpbm library, allowing remote attackers to potentially execute arbitrary code via a specially crafted PNM file with large width/height, resulting in a heap-based buffer overflow. Affected component: GOC...