Candidate: CVE-2016-8700 PublicDate: 2017-01-31 22:59:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8700 https://blogs.gentoo.org/ago/2016/08/08/potrace-multiplesix-heap-based-buffer-overflow-in-bm_readbody_bmp-bitmap_io-c/ Description: Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703. Ubuntu-Description: Notes: tyhicks> inkscape in xenial and earlier embeds libpotrace (LP: #1156664) mdeslaur> potrace in inkscape works on bitmaps already loaded, not mdeslaur> arbitrary images. Marking as not-affected for inkscape. Bugs: Priority: medium Discovered-by: Agostino Sarubbo Assigned-to: CVSS: nvd: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H [7.8 HIGH] Patches_potrace: upstream_potrace: released (1.13) precise_potrace: ignored (reached end-of-life) precise/esm_potrace: DNE (precise was deferred [2016-12-08]) trusty_potrace: ignored (reached end-of-life) trusty/esm_potrace: DNE (trusty was needed) vivid/ubuntu-core_potrace: DNE vivid/stable-phone-overlay_potrace: DNE xenial_potrace: not-affected (1.13-2) esm-infra/xenial_potrace: not-affected (1.13-2) yakkety_potrace: ignored (reached end-of-life) zesty_potrace: not-affected (1.13-3) artful_potrace: not-affected (1.14-2) bionic_potrace: not-affected (1.14-2) cosmic_potrace: not-affected (1.14-2) disco_potrace: not-affected (1.14-2) devel_potrace: not-affected (1.14-2) Patches_inkscape: upstream_inkscape: needs-triage precise_inkscape: ignored (reached end-of-life) precise/esm_inkscape: DNE (precise was deferred [2016-12-08]) trusty_inkscape: not-affected (no attack vector) trusty/esm_inkscape: DNE (trusty was not-affected [no attack vector]) vivid/ubuntu-core_inkscape: DNE vivid/stable-phone-overlay_inkscape: DNE xenial_inkscape: not-affected (no attack vector) esm-infra/xenial_inkscape: not-affected (no attack vector) yakkety_inkscape: ignored (reached end-of-life) zesty_inkscape: not-affected (uses system potrace) artful_inkscape: not-affected (uses system potrace) bionic_inkscape: not-affected (uses system potrace) cosmic_inkscape: not-affected (uses system potrace) disco_inkscape: not-affected (uses system potrace) devel_inkscape: not-affected (uses system potrace)