Vulnerabilities > Sam2P Project > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-21 | CVE-2020-19491 | Out-of-bounds Write vulnerability in Sam2P Project Sam2P 0.49.4 There is an invalid memory access bug in cgif.c that leads to a Segmentation fault in sam2p 0.49.4. | 7.8 |
| 2021-07-21 | CVE-2020-19492 | Unspecified vulnerability in Sam2P Project Sam2P 0.49.4 There is a floating point exception in ReadImage that leads to a Segmentation fault in sam2p 0.49.4. | 7.8 |
| 2018-05-26 | CVE-2018-11490 | Improper Validation of Array Index vulnerability in multiple products The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain "Private->RunningCode - 2" array index is not checked. | 8.8 |
| 2018-05-26 | CVE-2018-11489 | Improper Validation of Array Index vulnerability in multiple products The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain CrntCode array index is not checked. | 8.8 |
| 2018-02-26 | CVE-2018-7487 | Out-of-bounds Write vulnerability in multiple products There is a heap-based buffer overflow in the LoadPCX function of in_pcx.cpp in sam2p 0.49.4. | 7.8 |
| 2017-09-21 | CVE-2017-14629 | Integer Overflow or Wraparound vulnerability in Sam2P Project Sam2P 0.49.3 In sam2p 0.49.3, the in_xpm_reader function in in_xpm.cpp has an integer signedness error, leading to a crash when writing to an out-of-bounds array element. | 7.5 |