Heap-based buffer overflow in the pstoedit_suffix_table_init function in output-pstoedit.c in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted bmp image file.
www.openwall.com/lists/oss-security/2016/09/10/3
www.openwall.com/lists/oss-security/2016/09/12/7
www.securityfocus.com/bid/92907
blogs.gentoo.org/ago/2016/09/10/autotrace-heap-based-buffer-overflow-in-pstoedit_suffix_table_init-output-pstoedit-c/
bugzilla.redhat.com/show_bug.cgi?id=1375255
security.gentoo.org/glsa/201708-09