Vulnerabilities > CVE-2019-19005 - Double Free vulnerability in multiple products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

autotrace-project

fedoraproject

CWE-415

NVD

Published: 2021-02-11

Updated: 2023-11-07

Summary

A bitmap double free in main.c in autotrace 0.31.1 allows attackers to cause an unspecified impact via a malformed bitmap image. This may occur after the use-after-free in CVE-2017-9182.

Vulnerable Configurations

Part	Description	Count
Application	Autotrace_Project Autotrace Project Autotrace 0.31.1	1
OS	Fedoraproject Fedoraproject Fedora 34	1

Common Weakness Enumeration (CWE)

CWE-415 - Double Free

References

https://github.com/autotrace/autotrace/commits/master
https://github.com/autotrace/autotrace/pull/40
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NC6MUH2RLVEA634LHBNZ2KO7MQKI2RDZ/