CVE-2019-19005

HIGH

Autotrace 0.31.1 - Use After Free

Title source: llm

Description

A bitmap double free in main.c in autotrace 0.31.1 allows attackers to cause an unspecified impact via a malformed bitmap image. This may occur after the use-after-free in CVE-2017-9182.

References (3)

Scores

CVSS v3 7.8
EPSS 0.0034
EPSS Percentile 56.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE
CWE-415
Status published

Affected Products (2)

autotrace_project/autotrace
fedoraproject/fedora

Timeline

Published Feb 11, 2021
Tracked Since Feb 18, 2026