[Forgot Password]
Login  Register Subscribe

23631

 
 

126941

 
 

98250

 
 

909

 
 

79281

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-1796 libwmf -- pointer use-after-free

ID: oval:org.mitre.oval:def:7918Date: (C)2009-12-15   (M)2017-11-27
Class: PATCHFamily: unix




Tavis Ormandy discovered that the embedded GD library copy in libwmf, a library to parse windows metafiles (WMF), makes use of a pointer after it was already freed. An attacker using a crafted WMF file can cause a denial of service or possibly the execute arbitrary code via applications using this library.

Platform:
Debian 5.0
Debian 4.0
Product:
libwmf
Reference:
DSA-1796
CVE-2009-1364
CVE    1
CVE-2009-1364
CPE    2
cpe:/o:debian:debian_linux:5.x
cpe:/o:debian:debian_linux:4.x

© 2013 SecPod Technologies