CVE search results

11 – 20 of 24 results

Detailed view

Sort by:

CVE-2016-8698

Medium priority

Ignored

Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than...

2 affected packages

inkscape, potrace

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
inkscape	—	—	—	Not affected	Not affected
potrace	—	—	—	Not affected	Not affected

CVE-2016-8697

Low priority

Ignored

The bm_new function in bitmap.h in potrace before 1.13 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted BMP image.

2 affected packages

inkscape, potrace

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
inkscape	—	—	—	Not affected	Not affected
potrace	—	—	—	Not affected	Not affected

CVE-2016-8696

Low priority

Ignored

The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted BMP image, a different vulnerability than CVE-2016-8694 and...

2 affected packages

inkscape, potrace

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
inkscape	—	—	—	Not affected	Not affected
potrace	—	—	—	Not affected	Not affected

CVE-2016-8695

Low priority

Ignored

2 affected packages

inkscape, potrace

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
inkscape	—	—	—	Not affected	Not affected
potrace	—	—	—	Not affected	Not affected

CVE-2016-8694

Low priority

Ignored

2 affected packages

inkscape, potrace

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
inkscape	—	—	—	Not affected	Not affected
potrace	—	—	—	Not affected	Not affected

CVE-2016-8686

Low priority

Vulnerable

The bm_new function in bitmap.h in potrace 1.13 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure.

2 affected packages

inkscape, potrace

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
inkscape	Not affected	Not affected	Not affected	Not affected	Not affected
potrace	Not affected	Not affected	Not affected	Not affected	Vulnerable

CVE-2016-8685

Low priority

Some fixes available 1 of 4

The findnext function in decompose.c in potrace 1.13 allows remote attackers to cause a denial of service (invalid memory access and crash) via a crafted BMP image.

2 affected packages

inkscape, potrace

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
inkscape	Not affected	Not affected	Not affected	Not affected	Not affected
potrace	Not affected	Not affected	Not affected	Not affected	Vulnerable

CVE-2013-7437

Low priority

Some fixes available 10 of 18

Multiple integer overflows in potrace 1.11 allow remote attackers to cause a denial of service (crash) via large dimensions in a BMP image, which triggers a buffer overflow.

2 affected packages

inkscape, potrace

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
inkscape	—	—	—	Not affected	Not affected
potrace	—	—	—	Fixed	Fixed

CVE-2012-5656

Medium priority

Some fixes available 4 of 5

The rasterization process in Inkscape before 0.48.4 allows local users to read arbitrary files via an external entity in a SVG file, aka an XML external entity (XXE) injection attack.

1 affected packages

inkscape

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
inkscape	—	—	—	—	—

CVE-2012-6076

Low priority

Some fixes available 3 of 4

Inkscape before 0.48.4 reads .eps files from /tmp instead of the current directory, which might cause Inkspace to process unintended files, allow local users to obtain sensitive information, and possibly have other unspecified impacts.

1 affected packages

inkscape

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
inkscape	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports