[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-1796 libwmf -- pointer use-after-free

ID: oval:org.mitre.oval:def:7918Date: (C)2009-12-15   (M)2017-10-04
Class: PATCHFamily: unix




Tavis Ormandy discovered that the embedded GD library copy in libwmf, a library to parse windows metafiles (WMF), makes use of a pointer after it was already freed. An attacker using a crafted WMF file can cause a denial of service or possibly the execute arbitrary code via applications using this library.

Platform:
Debian 5.0
Debian 4.0
Product:
libwmf
Reference:
DSA-1796
CVE-2009-1364
CVE    1
CVE-2009-1364
CPE    2
cpe:/o:novell:opensuse:13.2
cpe:/o:novell:opensuse:13.1

© 2013 SecPod Technologies