CVE-2003-0146

EPSS 3.9%

netpbm-free - math overflow errors

Published: 3/31/2003Modified: 4/28/2026

Also known as:DEBIAN-CVE-2003-0146

Description

Multiple vulnerabilities in NetPBM 9.20 and earlier, and possibly other versions, may allow remote attackers to cause a denial of service or execute arbitrary code via "maths overflow errors" such as (1) integer signedness errors or (2) integer overflows, which lead to buffer overflows.

Affected packages (3)

Debian/lprfrom 0, < 1:2000.05.07-4.20
Debian/netpbm-freefrom 0, < 2:9.20-9
Debian/netpbm-freefrom 0, < 2:9.20-8.2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0146