AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660.

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2023:3067 advisory.

  - AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660.
    (CVE-2022-32323)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2023:3067 advisory.

  - AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660.
    (CVE-2022-32323)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:3067 advisory.

    AutoTrace is a program for converting bitmaps to vector graphics.

    Security Fix(es):

    * autotrace: heap-buffer overflow via the ReadImage() at input-bmp.c (CVE-2022-32323)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.8 Release Notes     linked from the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-2589 advisory.

    [0.31.1-65]
    - Resolves: rhbz#2121828 Fix the gating tests by using only local test       Upstream testsuite will not work as this package code is very old

    [0.31.1-64]
    - Resolves: rhbz#2121828       CVE-2022-32323 - heap-buffer overflow via the ReadImage() at input-bmp.c

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2023:2589 advisory.

  - AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660.
    (CVE-2022-32323)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:2589 advisory.

    AutoTrace is a program for converting bitmaps to vector graphics.

    Security Fix(es):

    * autotrace: heap-buffer overflow via the ReadImage() at input-bmp.c (CVE-2022-32323)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.2 Release Notes     linked from the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-144 advisory.

  - AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660.
    (CVE-2022-32323)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:10197-1 advisory.

  - AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660.
    (CVE-2022-32323)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:10199-1 advisory.

  - AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660.
    (CVE-2022-32323)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
176189	AlmaLinux 8 : autotrace (ALSA-2023:3067)	Nessus	Alma Linux Local Security Checks	high
175885	CentOS 8 : autotrace (CESA-2023:3067)	Nessus	CentOS Local Security Checks	high
175851	RHEL 8 : autotrace (RHSA-2023:3067)	Nessus	Red Hat Local Security Checks	high
175725	Oracle Linux 9 : autotrace (ELSA-2023-2589)	Nessus	Oracle Linux Local Security Checks	high
175605	AlmaLinux 9 : autotrace (ALSA-2023:2589)	Nessus	Alma Linux Local Security Checks	high
175481	RHEL 9 : autotrace (RHSA-2023:2589)	Nessus	Red Hat Local Security Checks	high
173334	Amazon Linux 2023 : autotrace, autotrace-devel (ALAS2023-2023-144)	Nessus	Amazon Linux Local Security Checks	high
167348	openSUSE 15 Security Update : autotrace (openSUSE-SU-2022:10197-1)	Nessus	SuSE Local Security Checks	high
167338	openSUSE 15 Security Update : autotrace (openSUSE-SU-2022:10199-1)	Nessus	SuSE Local Security Checks	high

Detections

Analytics

CVE-2022-32323

high

Tenable Plugins

high

high

high

high

high

high

high

high

high