Launchpad CVE tracker

CVE 2013-7437

Multiple integer overflows in potrace 1.11 allow remote attackers to cause a denial of service (crash) via large dimensions in a BMP image, which triggers a buffer overflow.

Related bugs and status

CVE-2013-7437 (Candidate) is related to these bugs:

Bug #1443467: Please sync potrace 1.12-1 from Debian Unstable (main)

		In	Importance	Status
1443467	Please sync potrace 1.12-1 from Debian Unstable (main)	potrace (Ubuntu)	High	Fix Released
1443467	Please sync potrace 1.12-1 from Debian Unstable (main)	potrace (Debian)	Unknown	Fix Released
1443467	Please sync potrace 1.12-1 from Debian Unstable (main)	potrace (Fedora)	Low	Invalid

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugs.debian.or...
MISC: https://bugzilla.redha...
MISC: http://www.openwall.co...
MISC: http://lists.opensuse....

Launchpad.net

CVE 2013-7437

Related bugs and status

Related bugs

References