CVE-2020-11528

Name of the Vulnerable Software and Affected Versions bit2spr version 1992-06-07

Description The issue is a stack-based buffer overflow that occurs when processing a bitmap file with a long line, resulting in a 129-byte write. This happens in the conv bitmap function located in bit2spr.c.

Recommendations For bit2spr version 1992-06-07, consider restricting the use of the conv bitmap function in bit2spr.c to minimize the risk of exploitation until a patch is available. Avoid using bit2spr to process bitmap files with long lines until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.