Stack-based buffer overflow in converter/ppm/xpmtoppm.c in netpbm before 10.47.07 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an XPM image file that contains a crafted header field associated with a large color index value.
Max CVSS
7.5
EPSS Score
2.12%
Published
2010-02-12
Updated
2023-02-13
pamperspective in Netpbm before 10.35.48 does not properly calculate a window height, which allows context-dependent attackers to cause a denial of service (crash) via a crafted image file that triggers an out-of-bounds read.
Max CVSS
4.3
EPSS Score
0.23%
Published
2008-10-31
Updated
2017-08-08
2 vulnerabilities found