AVG-1977 log

Package gocr
Status Vulnerable
Severity Medium
Type arbitrary code execution
Affected 0.52-2
Fixed Unknown
Current 0.52-2 [community]
Ticket Create
Created Fri May 21 08:41:58 2021
Issue Severity Remote Type Description
CVE-2021-33481 Medium No Arbitrary code execution
A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in try_to_divide_boxes() in pgm2asc.c.
CVE-2021-33480 Medium No Arbitrary code execution
A use-after-free vulnerability was discovered in gocr through 0.53-20200802 in context_correction() in pgm2asc.c.
CVE-2021-33479 Medium No Arbitrary code execution
A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in measure_pitch() in pgm2asc.c.