Information on source package potrace

Available versions

ReleaseVersion
wheezy1.10-1
wheezy (security)1.10-1+deb7u2
jessie1.12-1+deb8u1
stretch1.13-3
sid1.14-1

Open issues

BugwheezyjessiestretchsidDescription
CVE-2017-7263vulnerablevulnerable (no DSA)vulnerablevulnerableThe bm_readbody_bmp function in bitmap_io.c in Potrace 1.14 allows ...
CVE-2016-8686vulnerablevulnerable (no DSA)vulnerablevulnerableThe bm_new function in bitmap.h in potrace 1.13 allows remote ...
CVE-2016-8685fixedvulnerable (no DSA)fixedfixedThe findnext function in decompose.c in potrace 1.13 allows remote ...

Resolved issues

BugDescription
CVE-2016-8703Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8702Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8701Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8700Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8699Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8698Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8697The bm_new function in bitmap.h in potrace before 1.13 allows remote ...
CVE-2016-8696The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 ...
CVE-2016-8695The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 ...
CVE-2016-8694The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 ...
CVE-2013-7437Multiple integer overflows in potrace 1.11 allow remote attackers to ...

Security announcements

DSA / DLADescription
DLA-889-1potrace - security update
DLA-675-1potrace - security update

Search for package or bug name: Reporting problems