gocr - Arch Linux

Open

Group	Affected	Fixed	Severity	Status	Ticket
AVG-1977	0.52-2		Medium	Vulnerable

Issue	Group	Severity	Remote	Type	Description
CVE-2021-33481	AVG-1977	Medium	No	Arbitrary code execution	A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in try_to_divide_boxes() in pgm2asc.c.
CVE-2021-33480	AVG-1977	Medium	No	Arbitrary code execution	A use-after-free vulnerability was discovered in gocr through 0.53-20200802 in context_correction() in pgm2asc.c.
CVE-2021-33479	AVG-1977	Medium	No	Arbitrary code execution	A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in measure_pitch() in pgm2asc.c.

Issue

Group

Severity

Remote

Type

Description

Medium

Arbitrary code execution

A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in try_to_divide_boxes() in pgm2asc.c.

Medium

Arbitrary code execution

A use-after-free vulnerability was discovered in gocr through 0.53-20200802 in context_correction() in pgm2asc.c.

Medium

Arbitrary code execution

A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in measure_pitch() in pgm2asc.c.