UBUNTU-CVE-2013-1953
- Source
- https://ubuntu.com/security/CVE-2013-1953
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2013/UBUNTU-CVE-2013-1953.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2013-1953
- Upstream
- Published
- 2013-12-09T16:36:00Z
- Modified
- 2025-07-16T08:10:42.553993Z
- Severity
-
- Ubuntu - medium
- Summary
- [none]
- Details
-
Integer underflow in the inputbmpreader function in input-bmp.c in AutoTrace 0.31.1 allows context-dependent attackers to have an unspecified impact via a small value in the biSize field in the header of a BMP file, which triggers a buffer overflow.
- References
Affected packages
Ubuntu:14.04:LTS / autotrace
Package
- Name
- autotrace
- Purl
- pkg:deb/ubuntu/autotrace@0.31.1-16+deb7u1ubuntu0.1?arch=source&distro=trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.31.1-16+deb7u1ubuntu0.1
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_name": "autotrace",
"binary_version": "0.31.1-16+deb7u1ubuntu0.1"
},
{
"binary_name": "autotrace-dbgsym",
"binary_version": "0.31.1-16+deb7u1ubuntu0.1"
},
{
"binary_name": "libautotrace-dev",
"binary_version": "0.31.1-16+deb7u1ubuntu0.1"
},
{
"binary_name": "libautotrace3",
"binary_version": "0.31.1-16+deb7u1ubuntu0.1"
},
{
"binary_name": "libautotrace3-dbgsym",
"binary_version": "0.31.1-16+deb7u1ubuntu0.1"
}
]
}
Ubuntu:Pro:14.04:LTS / sam2p
Package
- Name
- sam2p
- Purl
- pkg:deb/ubuntu/sam2p@0.49.2-3+deb8u3build0.14.04.1?arch=source&distro=esm-infra-legacy/trusty