[ALSA-2021:4519] Moderate: autotrace security update
Type:
security
Severity:
moderate
Release date:
2021-11-12
Description:
AutoTrace is a program for converting bitmaps to vector graphics. Security Fix(es): * autotrace: bitmap double free in main.c allows attackers to cause an unspecified impact (CVE-2019-19005) * autotrace: integer overflow in input-bmp.c (CVE-2019-19004) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 autotrace-0.31.1-53.el8.aarch64.rpm b3f8240f16f33419863e6333b47b1ddba7b86e0e26f11a68fd473edcc17003f6
i686 autotrace-0.31.1-53.el8.i686.rpm fc2f1f4c55a9aaac4dcd1b2dec8e28d36965a04d00a592a92477747d0ec2bcfe
ppc64le autotrace-0.31.1-53.el8.ppc64le.rpm bb65e3fa39f6682df5f7e1742585e842be8b35c3589cb48a39513b3e8e999c28
x86_64 autotrace-0.31.1-53.el8.x86_64.rpm 894be813c851c1f1344ac2d11f5b54b5e5267bb77737e9458ecf66fbb2570afc
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.