Total
14 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2017-12067 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
| Potrace 1.14 has a heap-based buffer over-read in the interpolate_cubic function in mkbitmap.c. | |||||
| CVE-2016-8694 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 4.3 MEDIUM | 5.5 MEDIUM |
| The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted BMP image, a different vulnerability than CVE-2016-8695 and CVE-2016-8696. | |||||
| CVE-2016-8700 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 6.8 MEDIUM | 7.8 HIGH |
| Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703. | |||||
| CVE-2016-8703 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 6.8 MEDIUM | 7.8 HIGH |
| Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, and CVE-2016-8702. | |||||
| CVE-2016-8702 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 6.8 MEDIUM | 7.8 HIGH |
| Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, and CVE-2016-8703. | |||||
| CVE-2016-8697 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 4.3 MEDIUM | 5.5 MEDIUM |
| The bm_new function in bitmap.h in potrace before 1.13 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted BMP image. | |||||
| CVE-2016-8686 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 6.8 MEDIUM | 7.8 HIGH |
| The bm_new function in bitmap.h in potrace 1.13 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. | |||||
| CVE-2016-8701 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 6.8 MEDIUM | 7.8 HIGH |
| Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8702, and CVE-2016-8703. | |||||
| CVE-2016-8696 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 4.3 MEDIUM | 5.5 MEDIUM |
| The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted BMP image, a different vulnerability than CVE-2016-8694 and CVE-2016-8695. | |||||
| CVE-2016-8698 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 6.8 MEDIUM | 7.8 HIGH |
| Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703. | |||||
| CVE-2016-8695 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 4.3 MEDIUM | 5.5 MEDIUM |
| The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted BMP image, a different vulnerability than CVE-2016-8694 and CVE-2016-8696. | |||||
| CVE-2017-7263 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 6.8 MEDIUM | 7.8 HIGH |
| The bm_readbody_bmp function in bitmap_io.c in Potrace 1.14 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted BMP image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-8698. | |||||
| CVE-2016-8685 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 4.3 MEDIUM | 5.5 MEDIUM |
| The findnext function in decompose.c in potrace 1.13 allows remote attackers to cause a denial of service (invalid memory access and crash) via a crafted BMP image. | |||||
| CVE-2016-8699 | 1 Potrace Project | 1 Potrace | 2023-12-10 | 6.8 MEDIUM | 7.8 HIGH |
| Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8700, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703. | |||||