sam2p_project CVE Vulnerabilities & Metrics

Focus on sam2p_project vulnerabilities and metrics.

Last updated: 08 Mar 2025, 23:25 UTC

About sam2p_project Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with sam2p_project. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total sam2p_project CVEs: 18
Earliest CVE date: 21 Sep 2017, 07:29 UTC
Latest CVE date: 21 Jul 2021, 18:15 UTC

Latest CVE reference: CVE-2020-19492

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 0

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical sam2p_project CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 6.99

Max CVSS: 7.5

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	0
4.0-6.9	7
7.0-8.9	11
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS sam2p_project CVEs

These are the five CVEs with the highest CVSS scores for sam2p_project, sorted by severity first and recency.

CVE-2018-12601 sam2p_project Published on 20 Jun 2018, 18:29 UTC (CVSS: 7.5)
There is a heap-based buffer overflow in ReadImage in input-tga.ci in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.
CVE-2018-12578 sam2p_project Published on 19 Jun 2018, 15:29 UTC (CVSS: 7.5)
There is a heap-based buffer overflow in bmp_compress1_row in appliers.cpp in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.
CVE-2018-7554 sam2p_project Published on 28 Feb 2018, 06:29 UTC (CVSS: 7.5)
There is an invalid free in ReadImage in input-bmp.ci that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.
CVE-2018-7553 sam2p_project Published on 28 Feb 2018, 06:29 UTC (CVSS: 7.5)
There is a heap-based buffer overflow in the pcxLoadRaster function of in_pcx.cpp in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.
CVE-2018-7552 sam2p_project Published on 28 Feb 2018, 06:29 UTC (CVSS: 7.5)
There is an invalid free in Mapping::DoubleHash::clear in mapping.cpp that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.

All CVEs for sam2p_project

CVE-2020-19492 sam2p_project vulnerability CVSS: 6.8 21 Jul 2021, 18:15 UTC

There is a floating point exception in ReadImage that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.

CVE-2020-19491 sam2p_project vulnerability CVSS: 6.8 21 Jul 2021, 18:15 UTC

There is an invalid memory access bug in cgif.c that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.

CVE-2018-12601 sam2p_project vulnerability CVSS: 7.5 20 Jun 2018, 18:29 UTC

There is a heap-based buffer overflow in ReadImage in input-tga.ci in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.

CVE-2018-12578 sam2p_project vulnerability CVSS: 7.5 19 Jun 2018, 15:29 UTC

There is a heap-based buffer overflow in bmp_compress1_row in appliers.cpp in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.

CVE-2018-11490 sam2p_project vulnerability CVSS: 6.8 26 May 2018, 18:29 UTC

The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain "Private->RunningCode - 2" array index is not checked. This will lead to a denial of service or possibly unspecified other impact.

CVE-2018-11489 sam2p_project vulnerability CVSS: 6.8 26 May 2018, 18:29 UTC

The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain CrntCode array index is not checked. This will lead to a denial of service or possibly unspecified other impact.

CVE-2018-7554 sam2p_project vulnerability CVSS: 7.5 28 Feb 2018, 06:29 UTC

There is an invalid free in ReadImage in input-bmp.ci that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.

CVE-2018-7553 sam2p_project vulnerability CVSS: 7.5 28 Feb 2018, 06:29 UTC

There is a heap-based buffer overflow in the pcxLoadRaster function of in_pcx.cpp in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.

CVE-2018-7552 sam2p_project vulnerability CVSS: 7.5 28 Feb 2018, 06:29 UTC

There is an invalid free in Mapping::DoubleHash::clear in mapping.cpp that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.

CVE-2018-7551 sam2p_project vulnerability CVSS: 7.5 28 Feb 2018, 06:29 UTC

There is an invalid free in MiniPS::delete0 in minips.cpp that leads to a Segmentation fault in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.

CVE-2018-7487 sam2p_project vulnerability CVSS: 6.8 26 Feb 2018, 15:29 UTC

There is a heap-based buffer overflow in the LoadPCX function of in_pcx.cpp in sam2p 0.49.4. A Crafted input will lead to a denial of service or possibly unspecified other impact.

CVE-2017-16663 sam2p_project vulnerability CVSS: 4.3 08 Nov 2017, 06:29 UTC

In sam2p 0.49.4, there are integer overflows (with resultant heap-based buffer overflows) in input-bmp.ci in the function ReadImage, because "width * height" multiplications occur unsafely.

CVE-2017-14637 sam2p_project vulnerability CVSS: 7.5 22 Sep 2017, 07:29 UTC

In sam2p 0.49.3, there is an invalid read of size 2 in the parse_rgb function in in_xpm.cpp. However, this can also cause a write to an illegal address.

CVE-2017-14636 sam2p_project vulnerability CVSS: 7.5 22 Sep 2017, 07:29 UTC

Because of an integer overflow in sam2p 0.49.3, a loop executes 0xffffffff times, ending with an invalid read of size 1 in the Image::Indexed::sortPal function in image.cpp. However, this also causes memory corruption because of an attempted write to the invalid d[0xfffffffe] array element.

CVE-2017-14631 sam2p_project vulnerability CVSS: 7.5 21 Sep 2017, 07:29 UTC

In sam2p 0.49.3, the pcxLoadRaster function in in_pcx.cpp has an integer signedness error leading to a heap-based buffer overflow.

CVE-2017-14630 sam2p_project vulnerability CVSS: 7.5 21 Sep 2017, 07:29 UTC

In sam2p 0.49.3, an integer overflow exists in the pcxLoadImage24 function of the file in_pcx.cpp, leading to an invalid write operation.

CVE-2017-14629 sam2p_project vulnerability CVSS: 5.0 21 Sep 2017, 07:29 UTC

In sam2p 0.49.3, the in_xpm_reader function in in_xpm.cpp has an integer signedness error, leading to a crash when writing to an out-of-bounds array element.

CVE-2017-14628 sam2p_project vulnerability CVSS: 7.5 21 Sep 2017, 07:29 UTC

In sam2p 0.49.3, a heap-based buffer overflow exists in the pcxLoadImage24 function of the file in_pcx.cpp.