GCVE - cpe:2.3:a:advancemame:advancecomp:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:advancemame:advancecomp:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Advancemame (`267e894a-66d8-5196-b03c-17921fc330ca`)
Product	Advancecomp (`45222313-bec2-5dfc-8b2c-5247610c0e07`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:deb/debian/advancecomp`	purl2cpe	2026-06-01 10:11:46.729498
`pkg:deb/ubuntu/advancecomp`	purl2cpe	2026-06-01 10:11:46.729502
`pkg:github/amadvance/advancecomp`	purl2cpe	2026-06-01 10:11:46.729504
`pkg:rpm/fedora/advancecomp`	purl2cpe	2026-06-01 10:11:46.729507
`pkg:rpm/opensuse/advancecomp`	purl2cpe	2026-06-01 10:11:46.729510

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-2961`	vulnerable	2026-06-08 06:02:43.710895	Details available A segmentation fault flaw was found in the Advancecomp package. This may lead to decreased availability. Published: 2023-06-06T00:00:00.000Z Updated: 2025-01-07T21:25:01.713Z Open on db.gcve.eu Reference links https://bugzilla.redhat.com/show_bug.cgi?id=2210768	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-8383`	vulnerable	2026-06-08 05:14:23.976675	Details available An issue was discovered in AdvanceCOMP through 2.1. An invalid memory address occurs in the function adv_png_unfilter_8 in lib/png.c. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file. Published: 2019-02-17T02:00:00.000Z Updated: 2024-08-04T21:17:31.319Z Open on db.gcve.eu Reference links https://research.loginsoft.com/bugs/invalid-memory-access-in-adv_png_unfilter_8-advancecomp/ https://sourceforge.net/p/advancemame/bugs/272/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J23C6QSTJMQ467KAI6QG54AE4MZRLPQV/ https://access.redhat.com/errata/RHSA-2019:2332 https://lists.debian.org/debian-lts-announce/2021/12/msg00034.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-8379`	vulnerable	2026-06-08 05:14:23.972899	Details available An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file. Published: 2019-02-17T02:00:00.000Z Updated: 2024-08-04T21:17:31.115Z Open on db.gcve.eu Reference links https://sourceforge.net/p/advancemame/bugs/271/ https://research.loginsoft.com/bugs/null-pointer-dereference-vulnerability-in-the-function-be_uint32_read-advancecomp/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J23C6QSTJMQ467KAI6QG54AE4MZRLPQV/ https://access.redhat.com/errata/RHSA-2019:2332 https://lists.debian.org/debian-lts-announce/2021/12/msg00034.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-1056`	vulnerable	2026-06-08 05:11:16.772047	Details available LOW (3.3) An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02 handled processing of ZIP files. An attacker could potentially use this flaw to crash the advzip utility by tricking it into processing crafted ZIP files. Published: 2018-07-27T18:00:00.000Z Updated: 2024-08-05T03:44:11.827Z Open on db.gcve.eu Reference links https://lists.debian.org/debian-lts-announce/2019/03/msg00004.html https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1056 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889270 https://usn.ubuntu.com/3570-1/ https://lists.debian.org/debian-lts-announce/2018/02/msg00016.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.