The bm_readbody_bmp function in bitmap_io.c in Potrace 1.14 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted BMP image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-8698.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-03-26T05:47:00

Updated: 2024-08-05T15:56:36.294Z

Reserved: 2017-03-26T00:00:00

Link: CVE-2017-7263

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-03-26T05:59:00.227

Modified: 2024-11-21T03:31:30.030

Link: CVE-2017-7263

cve-icon Redhat

No data.