Potrace Project : Security Vulnerabilities, CVEs, Published In 2017 (Overflow)
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, and CVE-2016-8702.
Max CVSS
7.8
EPSS Score
0.90%
Published
2017-01-31
Updated
2017-02-05
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, and CVE-2016-8703.
Max CVSS
7.8
EPSS Score
0.90%
Published
2017-01-31
Updated
2017-02-05
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8702, and CVE-2016-8703.
Max CVSS
7.8
EPSS Score
0.90%
Published
2017-01-31
Updated
2017-02-05
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703.
Max CVSS
7.8
EPSS Score
0.90%
Published
2017-01-31
Updated
2017-02-05
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8700, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703.
Max CVSS
7.8
EPSS Score
0.90%
Published
2017-01-31
Updated
2017-02-05
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703.
Max CVSS
7.8
EPSS Score
0.90%
Published
2017-01-31
Updated
2017-02-05
The bm_new function in bitmap.h in potrace 1.13 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure.
Max CVSS
7.8
EPSS Score
0.48%
Published
2017-01-31
Updated
2017-02-05
The findnext function in decompose.c in potrace 1.13 allows remote attackers to cause a denial of service (invalid memory access and crash) via a crafted BMP image.
Max CVSS
5.5
EPSS Score
0.37%
Published
2017-01-31
Updated
2017-02-05
8 vulnerabilities found