AVG-1977 log
| Package | gocr |
| Status | Vulnerable |
| Severity | Medium |
| Type | arbitrary code execution |
| Affected | 0.52-2 |
| Fixed | Unknown |
| Current | 0.52-3 [extra] |
| Ticket | Create |
| Created | Fri May 21 08:41:58 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-33481 | Medium | No | Arbitrary code execution | A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in try_to_divide_boxes() in pgm2asc.c. |
| CVE-2021-33480 | Medium | No | Arbitrary code execution | A use-after-free vulnerability was discovered in gocr through 0.53-20200802 in context_correction() in pgm2asc.c. |
| CVE-2021-33479 | Medium | No | Arbitrary code execution | A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in measure_pitch() in pgm2asc.c. |