Several vulnerabilities have been fixed in the AdvanceCOMP recompression utilities.
CVE-2018-1056
Out-of-bounds heap buffer read in advzip.
CVE-2019-8379
NULL pointer dereference in be_uint32_read().
CVE-2019-8383
Invalid memory access in adv_png_unfilter_8().
CVE-2019-9210
Integer overflow in advpng with invalid PNG size.
1.20-1+deb9u1