2 matches found
CVE-2021-27799
CVE-2021-27799 affects Zint Barcode Generator 2.9.1. A stack-based buffer overflow in ean_leading_zeroes (backend/upcean.c) is reachable from the C API when an application includes the Zint library. Arch Linux advisory ASA-202106-13 notes arbitrary code execution and recommends upgrading to 2.9.1...
CVE-2021-39247
CVE-2021-39247 affects Zint Barcode Generator prior to 2.10.0. The root cause is a one-byte buffer over-read in is_last_single_ascii (code1.c) and rs_encode_uint (reedsol.c). Public details consistently describe this as a buffer over-read without broader context; CVSS metrics from NVD indicate a ...