Matthewpruett

**Name of the Vulnerable Software and Affected Versions** DMitry (Deepmagic Information Gathering Tool) version 1.3a **Description** The issue is a format-string vulnerability. It has a threat model similar to other known format-string vulnerabilities. **Recommendations** For DMitry (Deepmagic Information Gathering Tool) version 1.3a, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** autotrace version 0.31.1 **Description** A biWidth*biBitCnt integer overflow in input-bmp.c allows attackers to provide an unexpected input value to malloc via a malformed bitmap image. This issue can be exploited by providing a specially crafted bitmap image. **Recommendations** For autotrace version 0.31.1, update to a newer version that fixes the biWidth*biBitCnt integer overflow issue in input-bmp.c to prevent attackers from providing unexpected input values to malloc.