ALT-PU-2015-1929-1
Closed vulnerabilities
Modified: 2024-11-21
CVE-2016-8685
The findnext function in decompose.c in potrace 1.13 allows remote attackers to cause a denial of service (invalid memory access and crash) via a crafted BMP image.
- [oss-security] 20161008 potrace: invalid memory access in findnext (decompose.c)
- [oss-security] 20161008 potrace: invalid memory access in findnext (decompose.c)
- [oss-security] 20161015 Re: potrace: invalid memory access in findnext (decompose.c)
- [oss-security] 20161015 Re: potrace: invalid memory access in findnext (decompose.c)
- 93470
- 93470
- https://blogs.gentoo.org/ago/2016/08/29/potrace-invalid-memory-access-in-findnext-decompose-c/
- https://blogs.gentoo.org/ago/2016/08/29/potrace-invalid-memory-access-in-findnext-decompose-c/
Modified: 2024-11-21
CVE-2016-8686
The bm_new function in bitmap.h in potrace 1.13 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure.
Modified: 2024-11-21
CVE-2016-8694
The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted BMP image, a different vulnerability than CVE-2016-8695 and CVE-2016-8696.
- http://potrace.sourceforge.net/ChangeLog
- http://potrace.sourceforge.net/ChangeLog
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- 93778
- 93778
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiple-three-null-pointer-dereference-in-bm_readbody_bmp-bitmap_io-c/
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiple-three-null-pointer-dereference-in-bm_readbody_bmp-bitmap_io-c/
Modified: 2024-11-21
CVE-2016-8695
The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted BMP image, a different vulnerability than CVE-2016-8694 and CVE-2016-8696.
- http://potrace.sourceforge.net/ChangeLog
- http://potrace.sourceforge.net/ChangeLog
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- 93778
- 93778
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiple-three-null-pointer-dereference-in-bm_readbody_bmp-bitmap_io-c/
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiple-three-null-pointer-dereference-in-bm_readbody_bmp-bitmap_io-c/
Modified: 2024-11-21
CVE-2016-8696
The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted BMP image, a different vulnerability than CVE-2016-8694 and CVE-2016-8695.
- http://potrace.sourceforge.net/ChangeLog
- http://potrace.sourceforge.net/ChangeLog
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- 93778
- 93778
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiple-three-null-pointer-dereference-in-bm_readbody_bmp-bitmap_io-c/
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiple-three-null-pointer-dereference-in-bm_readbody_bmp-bitmap_io-c/
Modified: 2024-11-21
CVE-2016-8697
The bm_new function in bitmap.h in potrace before 1.13 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted BMP image.
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- 93778
- 93778
- https://blogs.gentoo.org/ago/2016/08/08/potrace-divide-by-zero-in-bm_new-bitmap-h/
- https://blogs.gentoo.org/ago/2016/08/08/potrace-divide-by-zero-in-bm_new-bitmap-h/
Modified: 2024-11-21
CVE-2016-8698
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703.
- http://potrace.sourceforge.net/ChangeLog
- http://potrace.sourceforge.net/ChangeLog
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- 93778
- 93778
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
Modified: 2024-11-21
CVE-2016-8699
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8700, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703.
- http://potrace.sourceforge.net/ChangeLog
- http://potrace.sourceforge.net/ChangeLog
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- 93778
- 93778
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
Modified: 2024-11-21
CVE-2016-8700
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703.
- http://potrace.sourceforge.net/ChangeLog
- http://potrace.sourceforge.net/ChangeLog
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- 93778
- 93778
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
Modified: 2024-11-21
CVE-2016-8701
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8702, and CVE-2016-8703.
- http://potrace.sourceforge.net/ChangeLog
- http://potrace.sourceforge.net/ChangeLog
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- 93778
- 93778
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
Modified: 2024-11-21
CVE-2016-8702
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, and CVE-2016-8703.
- http://potrace.sourceforge.net/ChangeLog
- http://potrace.sourceforge.net/ChangeLog
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- 93778
- 93778
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
Modified: 2024-11-21
CVE-2016-8703
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, and CVE-2016-8702.
- http://potrace.sourceforge.net/ChangeLog
- http://potrace.sourceforge.net/ChangeLog
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20160818 potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- [oss-security] 20161015 Re: potrace: multiple crashes
- 93778
- 93778
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/
- https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/