Autotrace Project Autotrace vulnerabilities

55 known vulnerabilities affecting autotrace_project/autotrace.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL33HIGH19MEDIUM2LOW1

Vulnerabilities

Page 3 of 3

CVE-2017-9179HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9179 [HIGH] CWE-125 CVE-2017-9179: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid rea libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the ReadImage function in input-bmp.c:425:14.

nvd

CVE-2017-9159HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9159 [HIGH] CWE-787 CVE-2017-9159: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid wri libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the pnm_load_rawpbm function in input-pnm.c:391:15.

nvd

CVE-2017-9177HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9177 [HIGH] CWE-125 CVE-2017-9177: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid rea libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the ReadImage function in input-bmp.c:390:12.

nvd

CVE-2017-9176HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9176 [HIGH] CWE-787 CVE-2017-9176: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid wri libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the ReadImage function in input-bmp.c:370:25.

nvd

CVE-2017-9181HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9181 [HIGH] CWE-787 CVE-2017-9181: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid wri libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the ReadImage function in input-bmp.c.

nvd

CVE-2017-9190HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9190 [HIGH] CWE-416 CVE-2017-9190: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid fre libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid free), related to the free_bitmap function in bitmap.c:24:5.

nvd

CVE-2017-9156HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9156 [HIGH] CWE-787 CVE-2017-9156: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid wri libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the pnm_load_ascii function in input-pnm.c:303:12.

nvd

CVE-2017-9182HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9182 [HIGH] CWE-416 CVE-2017-9182: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (use-after-f libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (use-after-free and invalid heap read), related to the GET_COLOR function in color.c:16:11.

nvd

CVE-2017-9178HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9178 [HIGH] CWE-787 CVE-2017-9178: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid wri libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the ReadImage function in input-bmp.c:421:11.

nvd

CVE-2017-9158HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9158 [HIGH] CWE-787 CVE-2017-9158: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid wri libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the pnm_load_raw function in input-pnm.c:336:11.

nvd

CVE-2017-9154HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9154 [HIGH] CWE-125 CVE-2017-9154: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid rea libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the GET_COLOR function in color.c:16:11.

nvd

CVE-2017-9175HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9175 [HIGH] CWE-787 CVE-2017-9175: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid wri libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the ReadImage function in input-bmp.c:353:25.

nvd

CVE-2017-9157HIGHCVSS 7.5v0.31.12017-05-23

CVE-2017-9157 [HIGH] CWE-787 CVE-2017-9157: libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid wri libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the pnm_load_ascii function in input-pnm.c:306:14.

nvd

CVE-2016-7392MEDIUMCVSS 5.5v0.31.12017-02-15

CVE-2016-7392 [MEDIUM] CWE-787 CVE-2016-7392: Heap-based buffer overflow in the pstoedit_suffix_table_init function in output-pstoedit.c in AutoTr Heap-based buffer overflow in the pstoedit_suffix_table_init function in output-pstoedit.c in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted bmp image file.

nvdosv

CVE-2013-1953MEDIUMCVSS 6.8v0.31.12013-12-09

CVE-2013-1953 [MEDIUM] CWE-189 CVE-2013-1953: Integer underflow in the input_bmp_reader function in input-bmp.c in AutoTrace 0.31.1 allows context Integer underflow in the input_bmp_reader function in input-bmp.c in AutoTrace 0.31.1 allows context-dependent attackers to have an unspecified impact via a small value in the biSize field in the header of a BMP file, which triggers a buffer overflow.

nvd

← Previous3 / 3