CVE-2005-1142
EPSS 4.2%
Description
Heap-based buffer overflow in the readpgm function in pnm.c for GOCR 0.40, when it is not using netpbm, allows remote attackers to execute arbitrary code via a P3 format PNM file with more data than implied by its width and height values.
How to fix CVE-2005-1142
To remediate CVE-2005-1142, upgrade the affected package to a fixed version below.
- Debian/gocr—upgrade to 0.39-5 or later
Is CVE-2005-1142 being exploited?
Low — EPSS is 4.2%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 0.39-5