Information on source package advancecomp

Available versions

Release	Version
buster	2.1-2.1
bullseye	2.1-2.1
bookworm	2.5-1
trixie	2.5-1
sid	2.5-1

Open issues

Bug	buster	bullseye	bookworm	trixie	sid	Description
CVE-2022-35019	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	fixed	Advancecomp v2.3 was discovered to contain a segmentation fault.

Open unimportant issues

Bug	buster	bullseye	bookworm	trixie	sid	Description
CVE-2023-2961	vulnerable	vulnerable	fixed	fixed	fixed	A segmentation fault flaw was found in the Advancecomp package. This m ...
CVE-2022-35020	vulnerable	vulnerable	fixed	fixed	fixed	Advancecomp v2.3 was discovered to contain a heap buffer overflow via ...
CVE-2022-35018	vulnerable	vulnerable	fixed	fixed	fixed	Advancecomp v2.3 was discovered to contain a segmentation fault.
CVE-2022-35017	vulnerable	vulnerable	fixed	fixed	fixed	Advancecomp v2.3 was discovered to contain a heap buffer overflow.
CVE-2022-35016	vulnerable	vulnerable	fixed	fixed	fixed	Advancecomp v2.3 was discovered to contain a heap buffer overflow.
CVE-2022-35015	vulnerable	vulnerable	fixed	fixed	fixed	Advancecomp v2.3 was discovered to contain a heap buffer overflow via ...
CVE-2022-35014	vulnerable	vulnerable	fixed	fixed	fixed	Advancecomp v2.3 contains a segmentation fault.

Resolved issues

Bug	Description
CVE-2019-9210	In AdvanceCOMP 2.1, png_compress in pngex.cc in advpng has an integer ...
CVE-2019-8383	An issue was discovered in AdvanceCOMP through 2.1. An invalid memory ...
CVE-2019-8379	An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer der ...
CVE-2018-1056	An out-of-bounds heap buffer read flaw was found in the way advancecom ...

Security announcements

DSA / DLA	Description
DLA-2868-1	advancecomp - security update
DLA-1702-1	advancecomp - security update
DLA-1281-1	advancecomp - security update