Vulnerabilities > Sam2P Project > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-06-20 CVE-2018-12601 Out-of-bounds Write vulnerability in multiple products
There is a heap-based buffer overflow in ReadImage in input-tga.ci in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.
network
low complexity
sam2p-project debian CWE-787
critical
 9.8
9.8
2018-06-19 CVE-2018-12578 Out-of-bounds Write vulnerability in Sam2P Project Sam2P 0.49.4
There is a heap-based buffer overflow in bmp_compress1_row in appliers.cpp in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.
network
low complexity
sam2p-project CWE-787
critical
 9.8
9.8
2018-02-28 CVE-2018-7554 Use After Free vulnerability in multiple products
There is an invalid free in ReadImage in input-bmp.ci that leads to a Segmentation fault in sam2p 0.49.4.
network
low complexity
sam2p-project debian CWE-416
critical
 9.8
9.8
2018-02-28 CVE-2018-7553 Out-of-bounds Write vulnerability in multiple products
There is a heap-based buffer overflow in the pcxLoadRaster function of in_pcx.cpp in sam2p 0.49.4.
network
low complexity
sam2p-project debian CWE-787
critical
 9.8
9.8
2018-02-28 CVE-2018-7552 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
There is an invalid free in Mapping::DoubleHash::clear in mapping.cpp that leads to a Segmentation fault in sam2p 0.49.4.
network
low complexity
sam2p-project debian CWE-119
critical
 9.8
9.8
2018-02-28 CVE-2018-7551 Use After Free vulnerability in multiple products
There is an invalid free in MiniPS::delete0 in minips.cpp that leads to a Segmentation fault in sam2p 0.49.4.
network
low complexity
sam2p-project debian CWE-416
critical
 9.8
9.8
2017-09-22 CVE-2017-14637 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Sam2P Project Sam2P 0.49.3
In sam2p 0.49.3, there is an invalid read of size 2 in the parse_rgb function in in_xpm.cpp.
network
low complexity
sam2p-project CWE-119
critical
 9.8
9.8
2017-09-22 CVE-2017-14636 Integer Overflow or Wraparound vulnerability in Sam2P Project Sam2P 0.49.3
Because of an integer overflow in sam2p 0.49.3, a loop executes 0xffffffff times, ending with an invalid read of size 1 in the Image::Indexed::sortPal function in image.cpp.
network
low complexity
sam2p-project CWE-190
critical
 9.8
9.8
2017-09-21 CVE-2017-14631 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Sam2P Project Sam2P 0.49.3
In sam2p 0.49.3, the pcxLoadRaster function in in_pcx.cpp has an integer signedness error leading to a heap-based buffer overflow.
network
low complexity
sam2p-project CWE-119
critical
 9.8
9.8
2017-09-21 CVE-2017-14630 Integer Overflow or Wraparound vulnerability in Sam2P Project Sam2P 0.49.3
In sam2p 0.49.3, an integer overflow exists in the pcxLoadImage24 function of the file in_pcx.cpp, leading to an invalid write operation.
network
low complexity
sam2p-project CWE-190
critical
 9.8
9.8