{"id":"CVE-2022-32323","details":"AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660.","modified":"2026-04-10T04:48:08.931494Z","published":"2022-07-14T21:15:08.513Z","related":["ALSA-2023:2589","ALSA-2023:3067","openSUSE-SU-2022:10197-1","openSUSE-SU-2022:10199-1","openSUSE-SU-2024:12493-1"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4CZVCQH4L7KC5GXLU6SCESXR5TGSKQ2H/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UKZPC4WCDOJ7BPJOMZ46AV27RCABZRYA/"},{"type":"FIX","url":"https://github.com/autotrace/autotrace/commit/2b44c173027736c64b3f379bd154c41bab745423"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/autotrace/autotrace","events":[{"introduced":"0"},{"fixed":"2b44c173027736c64b3f379bd154c41bab745423"}]},{"type":"GIT","repo":"https://github.com/autotrace/autotrace","events":[{"introduced":"0"},{"fixed":"2b44c173027736c64b3f379bd154c41bab745423"}]}],"versions":["0.26","0.27","0.28","0.29","0.30","0.30.1","0.30.2","0.30.4","0.30.5","0.30.6","0.30.7","0.30.8","0.31.0","0.31.1","travis-20180904.16","travis-20180904.18","travis-20180905.21","travis-20180907.26","travis-20180915.31","travis-20180930.33","travis-20180930.35","travis-20180930.37","travis-20190108.39","travis-20190329.42","travis-20190408.44","travis-20190409.46","travis-20190409.48","travis-20190409.50","travis-20190409.51","travis-20190624.59","travis-20200219.62","travis-20200219.65"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-32323.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"0.40.0"}]},{"events":[{"introduced":"0"},{"last_affected":"36"}]},{"events":[{"introduced":"0"},{"last_affected":"37"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"}]}