CVE-2022-32323

CVSS v3.1

7.3

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L

Name of the Vulnerable Software and Affected Versions AutoTrace version 0.40.0

Description A heap overflow issue was discovered in AutoTrace via the ReadImage function at input-bmp.c:660.

Recommendations For AutoTrace version 0.40.0, consider restricting access to the ReadImage function as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALSA-2023:2589

ALSA-2023:3067

CESA-2023_3067

CVE-2022-32323

INFSA-2023_2589

OPENSUSE-SU-2022:10197-1

OPENSUSE-SU-2022:10199-1

OPENSUSE-SU-2024:12493-1

RHSA-2023:2589

RHSA-2023:3067

RHSA-2023_2589

RHSA-2023_3067

Affected Products

Almalinux

Autotrace

Centos

Red Hat

CVE-2022-32323

Weakness Enumeration

Related Identifiers

Affected Products

References · 27