Information on source package potrace

Available versions

ReleaseVersion
jessie1.12-1+deb8u1
stretch1.13-3
buster1.15-1
sid1.15-1

Open issues

BugjessiestretchbustersidDescription
CVE-2017-7263vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe bm_readbody_bmp function in bitmap_io.c in Potrace 1.14 allows ...
CVE-2016-8686vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe bm_new function in bitmap.h in potrace 1.13 allows remote ...
CVE-2016-8685vulnerable (no DSA)fixedfixedfixedThe findnext function in decompose.c in potrace 1.13 allows remote ...

Open unimportant issues

BugjessiestretchbustersidDescription
CVE-2017-12067vulnerablevulnerablefixedfixedPotrace 1.14 has a heap-based buffer over-read in the interpolate_cubic ...

Resolved issues

BugDescription
CVE-2016-8703Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8702Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8701Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8700Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8699Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8698Heap-based buffer overflow in the bm_readbody_bmp function in ...
CVE-2016-8697The bm_new function in bitmap.h in potrace before 1.13 allows remote ...
CVE-2016-8696The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 ...
CVE-2016-8695The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 ...
CVE-2016-8694The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 ...
CVE-2013-7437Multiple integer overflows in potrace 1.11 allow remote attackers to ...

Security announcements

DSA / DLADescription
DLA-889-1potrace - security update
DLA-675-1potrace - security update

Search for package or bug name: Reporting problems