autotrace_project CVE Vulnerabilities & Metrics

Focus on autotrace_project vulnerabilities and metrics.

Last updated: 08 Mar 2025, 23:25 UTC

About autotrace_project Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with autotrace_project. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total autotrace_project CVEs: 54
Earliest CVE date: 09 Dec 2013, 16:36 UTC
Latest CVE date: 14 Jul 2022, 21:15 UTC

Latest CVE reference: CVE-2022-32323

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 0

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical autotrace_project CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 6.57

Max CVSS: 7.5

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	0
4.0-6.9	22
7.0-8.9	33
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS autotrace_project CVEs

These are the five CVEs with the highest CVSS scores for autotrace_project, sorted by severity first and recency.

CVE-2017-9200 autotrace_project Published on 23 May 2017, 04:29 UTC (CVSS: 7.5)
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-tga.c:528:63.
CVE-2017-9199 autotrace_project Published on 23 May 2017, 04:29 UTC (CVSS: 7.5)
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-tga.c:192:19.
CVE-2017-9198 autotrace_project Published on 23 May 2017, 04:29 UTC (CVSS: 7.5)
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-tga.c:508:18.
CVE-2017-9197 autotrace_project Published on 23 May 2017, 04:29 UTC (CVSS: 7.5)
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-tga.c:498:55.
CVE-2017-9196 autotrace_project Published on 23 May 2017, 04:29 UTC (CVSS: 7.5)
libautotrace.a in AutoTrace 0.31.1 has a "negative-size-param" issue in the ReadImage function in input-tga.c:528:7.

All CVEs for autotrace_project

CVE-2022-32323 autotrace_project vulnerability CVSS: 6.8 14 Jul 2022, 21:15 UTC

AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660.

CVE-2019-19005 autotrace_project vulnerability CVSS: 6.8 11 Feb 2021, 21:15 UTC

A bitmap double free in main.c in autotrace 0.31.1 allows attackers to cause an unspecified impact via a malformed bitmap image. This may occur after the use-after-free in CVE-2017-9182.

CVE-2019-19004 autotrace_project vulnerability CVSS: 4.3 11 Feb 2021, 21:15 UTC

A biWidth*biBitCnt integer overflow in input-bmp.c in autotrace 0.31.1 allows attackers to provide an unexpected input value to malloc via a malformed bitmap image.

CVE-2017-9200 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-tga.c:528:63.

CVE-2017-9199 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-tga.c:192:19.

CVE-2017-9198 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-tga.c:508:18.

CVE-2017-9197 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-tga.c:498:55.

CVE-2017-9196 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "negative-size-param" issue in the ReadImage function in input-tga.c:528:7.

CVE-2017-9195 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in input-tga.c:620:27.

CVE-2017-9194 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in input-tga.c:559:29.

CVE-2017-9193 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in input-tga.c:538:33.

CVE-2017-9192 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-tga.c:528:7.

CVE-2017-9191 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the rle_fread function in input-tga.c:252:15.

CVE-2017-9190 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid free), related to the free_bitmap function in bitmap.c:24:5.

CVE-2017-9189 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and application crash), related to the GET_COLOR function in color.c:16:11.

CVE-2017-9188 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "left shift ... cannot be represented in type int" issue in input-bmp.c:516:63.

CVE-2017-9187 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:486:7.

CVE-2017-9186 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:326:17.

CVE-2017-9185 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:319:7.

CVE-2017-9184 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:314:7.

CVE-2017-9183 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:309:7.

CVE-2017-9182 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (use-after-free and invalid heap read), related to the GET_COLOR function in color.c:16:11.

CVE-2017-9181 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the ReadImage function in input-bmp.c.

CVE-2017-9180 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the ReadImage function in input-bmp.c:440:14.

CVE-2017-9179 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the ReadImage function in input-bmp.c:425:14.

CVE-2017-9178 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the ReadImage function in input-bmp.c:421:11.

CVE-2017-9177 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the ReadImage function in input-bmp.c:390:12.

CVE-2017-9176 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the ReadImage function in input-bmp.c:370:25.

CVE-2017-9175 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the ReadImage function in input-bmp.c:353:25.

CVE-2017-9174 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the GET_COLOR function in color.c:21:23.

CVE-2017-9173 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-bmp.c:497:29.

CVE-2017-9172 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-bmp.c:496:29.

CVE-2017-9171 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in input-bmp.c:492:24.

CVE-2017-9170 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-bmp.c:370:25.

CVE-2017-9169 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-bmp.c:355:25.

CVE-2017-9168 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-bmp.c:353:25.

CVE-2017-9167 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-bmp.c:337:25.

CVE-2017-9166 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the GET_COLOR function in color.c:18:11.

CVE-2017-9165 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the GET_COLOR function in color.c:17:11.

CVE-2017-9164 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the GET_COLOR function in color.c:16:11.

CVE-2017-9163 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in pxl-outline.c:106:54.

CVE-2017-9162 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in autotrace.c:191:2.

CVE-2017-9161 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in autotrace.c:188:23.

CVE-2017-9160 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a stack-based buffer overflow in the pnmscanner_gettoken function in input-pnm.c:458:12.

CVE-2017-9159 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the pnm_load_rawpbm function in input-pnm.c:391:15.

CVE-2017-9158 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the pnm_load_raw function in input-pnm.c:336:11.

CVE-2017-9157 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the pnm_load_ascii function in input-pnm.c:306:14.

CVE-2017-9156 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the pnm_load_ascii function in input-pnm.c:303:12.

CVE-2017-9155 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the input_pnm_reader function in input-pnm.c:243:3.

CVE-2017-9154 autotrace_project vulnerability CVSS: 5.0 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the GET_COLOR function in color.c:16:11.

CVE-2017-9153 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the pnm_load_rawpbm function in input-pnm.c:391:13.

CVE-2017-9152 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the pnm_load_raw function in input-pnm.c:346:41.

CVE-2017-9151 autotrace_project vulnerability CVSS: 7.5 23 May 2017, 04:29 UTC

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the pnm_load_ascii function in input-pnm.c:303:12.

CVE-2016-7392 autotrace_project vulnerability CVSS: 4.3 15 Feb 2017, 21:59 UTC

Heap-based buffer overflow in the pstoedit_suffix_table_init function in output-pstoedit.c in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted bmp image file.

CVE-2013-1953 autotrace_project vulnerability CVSS: 6.8 09 Dec 2013, 16:36 UTC

Integer underflow in the input_bmp_reader function in input-bmp.c in AutoTrace 0.31.1 allows context-dependent attackers to have an unspecified impact via a small value in the biSize field in the header of a BMP file, which triggers a buffer overflow.