Jump to:

CVE-2013-1953

Jump to:

CVE-2013-1953

Package autotrace updated to version 0.31.1-alt6 for branch sisyphus in task 164494.

Published: 2013-12-09
Modified: 2024-11-21

CVE-2013-1953

Integer underflow in the input_bmp_reader function in input-bmp.c in AutoTrace 0.31.1 allows context-dependent attackers to have an unspecified impact via a small value in the biSize field in the header of a BMP file, which triggers a buffer overflow.

Severity: MEDIUM (6.8)

References:

MDVSA-2013:190
MDVSA-2013:190
[oss-security] 20130316 Re: autotrace: stack-based buffer overflow in bmp parser
[oss-security] 20130316 Re: autotrace: stack-based buffer overflow in bmp parser
https://bugzilla.redhat.com/show_bug.cgi?id=951257
https://bugzilla.redhat.com/show_bug.cgi?id=951257

Version: 2.1.0

Package autotrace update in sisyphus on 2016-05-11

ALT-PU-2016-1474-1

Closed vulnerabilities

CVE-2013-1953