aplevich/dpic

aplevich/dpic

Releases0

Stars16

An implementation of the pic "little language," with support for LaTeX, PDF, SVG, Postscript, and xfig 3.2 output.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-32420 ↗	Aug 22, 2023Tuesday, 22 August 2023, 19:16	7.5 HIGH	—
dpic 2021.01.01 has a Heap-based Buffer Overflow in thestorestring function in dpic.y.
CVE-2021-32421 ↗	Aug 22, 2023Tuesday, 22 August 2023, 19:16	7.5 HIGH	—
dpic 2021.01.01 has a Heap Use-After-Free in thedeletestringbox() function in dpic.y.
CVE-2021-32422 ↗	Aug 22, 2023Tuesday, 22 August 2023, 19:16	7.5 HIGH	—
dpic 2021.01.01 has a Global buffer overflow in theyylex() function in main.c and reads out of the bound array.
CVE-2021-33388 ↗	Aug 22, 2023Tuesday, 22 August 2023, 19:16	9.8 CRITICAL	—
dpic 2021.04.10 has a Heap Buffer Overflow in themakevar() function in dpic.y
CVE-2021-33390 ↗	Aug 22, 2023Tuesday, 22 August 2023, 19:16	9.8 CRITICAL	—
dpic 2021.04.10 has a use-after-free in thedeletestringbox() function in dpic.y. A different vulnerablility than CVE-2021-32421.
CVE-2019-13989 ↗	Jul 19, 2019Friday, 19 July 2019, 20:15	7.8 HIGH	6.8 MEDIUM
dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat() function in main.c.