CVE-2017-9168: autotrace: Multiple security issues

Severity: Critical

CVSS Score: 9.8

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-bmp.c:353:25.