SUSE-SU-2015:1484-1 - Vulnerability-Lookup

SUSE-SU-2015:1484-1

Vulnerability from csaf_suse - Published: 2015-07-31 15:10 - Updated: 2015-07-31 15:10

Summary

Security update for libwmf

Severity

Moderate

Notes

Title of the patch: Security update for libwmf

Description of the patch: libwmf was updated to fix five security issues. These security issues were fixed: - CVE-2009-1364: Fixed realloc return value usage (bsc#495842, bnc#831299) - CVE-2015-0848: Heap overflow on libwmf0.2-7 (bsc#933109) - CVE-2015-4588: DecodeImage() did not check that the run-length 'count' fits into the total size of the image, which could lead to a heap-based buffer overflow (bsc#933109) - CVE-2015-4695: meta_pen_create heap buffer over read (bsc#936058) - CVE-2015-4696: Use after free (bsc#936062)

Patchnames: SUSE-SLE-DESKTOP-12-2015-481,SUSE-SLE-SDK-12-2015-481,SUSE-SLE-WE-12-2015-481

Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

CVE-2009-1364

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2015-0848

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2015-4588

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2015-4695

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

CVE-2015-4696

Vendor Fix To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

References

URL

Category

	https://www.suse.com/support/security/rating/	external
	https://ftp.suse.com/pub/projects/security/csaf/s…	self
	https://www.suse.com/support/update/announcement/…	self
	https://lists.suse.com/pipermail/sle-security-upd…	self
	https://bugzilla.suse.com/495842	self
	https://bugzilla.suse.com/831299	self
	https://bugzilla.suse.com/933109	self
	https://bugzilla.suse.com/936058	self
	https://bugzilla.suse.com/936062	self
	https://www.suse.com/security/cve/CVE-2009-1364/	self
	https://www.suse.com/security/cve/CVE-2015-0848/	self
	https://www.suse.com/security/cve/CVE-2015-4588/	self
	https://www.suse.com/security/cve/CVE-2015-4695/	self
	https://www.suse.com/security/cve/CVE-2015-4696/	self
	https://www.suse.com/security/cve/CVE-2009-1364	external
	https://bugzilla.suse.com/495842	external
	https://www.suse.com/security/cve/CVE-2015-0848	external
	https://bugzilla.suse.com/933109	external
	https://www.suse.com/security/cve/CVE-2015-4588	external
	https://bugzilla.suse.com/933109	external
	https://www.suse.com/security/cve/CVE-2015-4695	external
	https://bugzilla.suse.com/936058	external
	https://www.suse.com/security/cve/CVE-2015-4696	external
	https://bugzilla.suse.com/936062	external

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for libwmf",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "libwmf was updated to fix five security issues.\n\nThese security issues were fixed:\n- CVE-2009-1364: Fixed realloc return value usage (bsc#495842, bnc#831299)\n- CVE-2015-0848: Heap overflow on libwmf0.2-7 (bsc#933109)\n- CVE-2015-4588: DecodeImage() did not check that the run-length \u0027count\u0027 fits into the total size of the image, which could lead to a heap-based buffer overflow (bsc#933109)\n- CVE-2015-4695: meta_pen_create heap buffer over read (bsc#936058)\n- CVE-2015-4696: Use after free (bsc#936062)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-DESKTOP-12-2015-481,SUSE-SLE-SDK-12-2015-481,SUSE-SLE-WE-12-2015-481",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_1484-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2015:1484-1",
        "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20151484-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2015:1484-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2015-September/001569.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 495842",
        "url": "https://bugzilla.suse.com/495842"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 831299",
        "url": "https://bugzilla.suse.com/831299"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 933109",
        "url": "https://bugzilla.suse.com/933109"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 936058",
        "url": "https://bugzilla.suse.com/936058"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 936062",
        "url": "https://bugzilla.suse.com/936062"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2009-1364 page",
        "url": "https://www.suse.com/security/cve/CVE-2009-1364/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-0848 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-0848/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-4588 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-4588/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-4695 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-4695/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-4696 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-4696/"
      }
    ],
    "title": "Security update for libwmf",
    "tracking": {
      "current_release_date": "2015-07-31T15:10:23Z",
      "generator": {
        "date": "2015-07-31T15:10:23Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2015:1484-1",
      "initial_release_date": "2015-07-31T15:10:23Z",
      "revision_history": [
        {
          "date": "2015-07-31T15:10:23Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
                "product": {
                  "name": "libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
                  "product_id": "libwmf-0_2-7-0.2.8.4-242.3.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libwmf-devel-0.2.8.4-242.3.ppc64le",
                "product": {
                  "name": "libwmf-devel-0.2.8.4-242.3.ppc64le",
                  "product_id": "libwmf-devel-0.2.8.4-242.3.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libwmf-gnome-0.2.8.4-242.3.ppc64le",
                "product": {
                  "name": "libwmf-gnome-0.2.8.4-242.3.ppc64le",
                  "product_id": "libwmf-gnome-0.2.8.4-242.3.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libwmf-0_2-7-0.2.8.4-242.3.s390x",
                "product": {
                  "name": "libwmf-0_2-7-0.2.8.4-242.3.s390x",
                  "product_id": "libwmf-0_2-7-0.2.8.4-242.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libwmf-devel-0.2.8.4-242.3.s390x",
                "product": {
                  "name": "libwmf-devel-0.2.8.4-242.3.s390x",
                  "product_id": "libwmf-devel-0.2.8.4-242.3.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libwmf-gnome-0.2.8.4-242.3.s390x",
                "product": {
                  "name": "libwmf-gnome-0.2.8.4-242.3.s390x",
                  "product_id": "libwmf-gnome-0.2.8.4-242.3.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libwmf-0_2-7-0.2.8.4-242.3.x86_64",
                "product": {
                  "name": "libwmf-0_2-7-0.2.8.4-242.3.x86_64",
                  "product_id": "libwmf-0_2-7-0.2.8.4-242.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libwmf-devel-0.2.8.4-242.3.x86_64",
                "product": {
                  "name": "libwmf-devel-0.2.8.4-242.3.x86_64",
                  "product_id": "libwmf-devel-0.2.8.4-242.3.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libwmf-gnome-0.2.8.4-242.3.x86_64",
                "product": {
                  "name": "libwmf-gnome-0.2.8.4-242.3.x86_64",
                  "product_id": "libwmf-gnome-0.2.8.4-242.3.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Desktop 12",
                "product": {
                  "name": "SUSE Linux Enterprise Desktop 12",
                  "product_id": "SUSE Linux Enterprise Desktop 12",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sled:12"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Software Development Kit 12",
                "product": {
                  "name": "SUSE Linux Enterprise Software Development Kit 12",
                  "product_id": "SUSE Linux Enterprise Software Development Kit 12",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-sdk:12"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Workstation Extension 12",
                "product": {
                  "name": "SUSE Linux Enterprise Workstation Extension 12",
                  "product_id": "SUSE Linux Enterprise Workstation Extension 12",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-we:12"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwmf-0_2-7-0.2.8.4-242.3.x86_64 as component of SUSE Linux Enterprise Desktop 12",
          "product_id": "SUSE Linux Enterprise Desktop 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
        },
        "product_reference": "libwmf-0_2-7-0.2.8.4-242.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwmf-0_2-7-0.2.8.4-242.3.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.ppc64le"
        },
        "product_reference": "libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwmf-0_2-7-0.2.8.4-242.3.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.s390x"
        },
        "product_reference": "libwmf-0_2-7-0.2.8.4-242.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwmf-0_2-7-0.2.8.4-242.3.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
        },
        "product_reference": "libwmf-0_2-7-0.2.8.4-242.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwmf-devel-0.2.8.4-242.3.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.ppc64le"
        },
        "product_reference": "libwmf-devel-0.2.8.4-242.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwmf-devel-0.2.8.4-242.3.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.s390x"
        },
        "product_reference": "libwmf-devel-0.2.8.4-242.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwmf-devel-0.2.8.4-242.3.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.x86_64"
        },
        "product_reference": "libwmf-devel-0.2.8.4-242.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwmf-gnome-0.2.8.4-242.3.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.ppc64le"
        },
        "product_reference": "libwmf-gnome-0.2.8.4-242.3.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwmf-gnome-0.2.8.4-242.3.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.s390x"
        },
        "product_reference": "libwmf-gnome-0.2.8.4-242.3.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwmf-gnome-0.2.8.4-242.3.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
          "product_id": "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.x86_64"
        },
        "product_reference": "libwmf-gnome-0.2.8.4-242.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libwmf-0_2-7-0.2.8.4-242.3.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12",
          "product_id": "SUSE Linux Enterprise Workstation Extension 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
        },
        "product_reference": "libwmf-0_2-7-0.2.8.4-242.3.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2009-1364",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2009-1364"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Use-after-free vulnerability in the embedded GD library in libwmf 0.2.8.4 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted WMF file.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2009-1364",
          "url": "https://www.suse.com/security/cve/CVE-2009-1364"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 495842 for CVE-2009-1364",
          "url": "https://bugzilla.suse.com/495842"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2015-07-31T15:10:23Z",
          "details": "important"
        }
      ],
      "title": "CVE-2009-1364"
    },
    {
      "cve": "CVE-2015-0848",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-0848"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-0848",
          "url": "https://www.suse.com/security/cve/CVE-2015-0848"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 933109 for CVE-2015-0848",
          "url": "https://bugzilla.suse.com/933109"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2015-07-31T15:10:23Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2015-0848"
    },
    {
      "cve": "CVE-2015-4588",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-4588"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted \"run-length count\" in an image in a WMF file.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-4588",
          "url": "https://www.suse.com/security/cve/CVE-2015-4588"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 933109 for CVE-2015-4588",
          "url": "https://bugzilla.suse.com/933109"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2015-07-31T15:10:23Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2015-4588"
    },
    {
      "cve": "CVE-2015-4695",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-4695"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WMF file.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-4695",
          "url": "https://www.suse.com/security/cve/CVE-2015-4695"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 936058 for CVE-2015-4695",
          "url": "https://bugzilla.suse.com/936058"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2015-07-31T15:10:23Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2015-4695"
    },
    {
      "cve": "CVE-2015-4696",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-4696"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) via a crafted WMF file to the (1) wmf2gd or (2) wmf2eps command.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Desktop 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.ppc64le",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.s390x",
          "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.x86_64",
          "SUSE Linux Enterprise Workstation Extension 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-4696",
          "url": "https://www.suse.com/security/cve/CVE-2015-4696"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 936062 for CVE-2015-4696",
          "url": "https://bugzilla.suse.com/936062"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Desktop 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-devel-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.ppc64le",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.s390x",
            "SUSE Linux Enterprise Software Development Kit 12:libwmf-gnome-0.2.8.4-242.3.x86_64",
            "SUSE Linux Enterprise Workstation Extension 12:libwmf-0_2-7-0.2.8.4-242.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2015-07-31T15:10:23Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2015-4696"
    }
  ]
}

CVE-2015-4696 (GCVE-0-2015-4696)

Vulnerability from cvelistv5 – Published: 2015-07-01 14:00 – Updated: 2024-08-06 06:25

Summary

Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) via a crafted WMF file to the (1) wmf2gd or (2) wmf2eps command.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

mitre

References

URL

Tags

	http://www.debian.org/security/2015/dsa-3302	vendor-advisoryx_refsource_DEBIAN
	https://security.gentoo.org/glsa/201602-03	vendor-advisoryx_refsource_GENTOO
	http://www.securityfocus.com/bid/75331	vdb-entryx_refsource_BID
	http://www.oracle.com/technetwork/topics/security…	x_refsource_CONFIRM
	http://www.ubuntu.com/usn/USN-2670-1	vendor-advisoryx_refsource_UBUNTU
	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug…	x_refsource_CONFIRM
	http://lists.fedoraproject.org/pipermail/package-…	vendor-advisoryx_refsource_FEDORA
	http://www.openwall.com/lists/oss-security/2015/06/21/3	mailing-listx_refsource_MLIST
	http://www.securitytracker.com/id/1032771	vdb-entryx_refsource_SECTRACK
	http://lists.opensuse.org/opensuse-updates/2015-0…	vendor-advisoryx_refsource_SUSE
	http://rhn.redhat.com/errata/RHSA-2015-1917.html	vendor-advisoryx_refsource_REDHAT
	http://www.openwall.com/lists/oss-security/2015/06/17/3	mailing-listx_refsource_MLIST

Date Public ?

2015-05-03 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T06:25:20.201Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "DSA-3302",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2015/dsa-3302"
          },
          {
            "name": "GLSA-201602-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201602-03"
          },
          {
            "name": "75331",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/75331"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
          },
          {
            "name": "USN-2670-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-2670-1"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784192"
          },
          {
            "name": "FEDORA-2015-10601",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162569.html"
          },
          {
            "name": "[oss-security] 20150621 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2015/06/21/3"
          },
          {
            "name": "1032771",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1032771"
          },
          {
            "name": "openSUSE-SU-2015:1212",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
          },
          {
            "name": "RHSA-2015:1917",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
          },
          {
            "name": "[oss-security] 20150617 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2015/06/17/3"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-05-03T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) via a crafted WMF file to the (1) wmf2gd or (2) wmf2eps command."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-21T09:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "DSA-3302",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2015/dsa-3302"
        },
        {
          "name": "GLSA-201602-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201602-03"
        },
        {
          "name": "75331",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/75331"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
        },
        {
          "name": "USN-2670-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-2670-1"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784192"
        },
        {
          "name": "FEDORA-2015-10601",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162569.html"
        },
        {
          "name": "[oss-security] 20150621 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2015/06/21/3"
        },
        {
          "name": "1032771",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1032771"
        },
        {
          "name": "openSUSE-SU-2015:1212",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
        },
        {
          "name": "RHSA-2015:1917",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
        },
        {
          "name": "[oss-security] 20150617 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2015/06/17/3"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2015-4696",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) via a crafted WMF file to the (1) wmf2gd or (2) wmf2eps command."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "DSA-3302",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2015/dsa-3302"
            },
            {
              "name": "GLSA-201602-03",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201602-03"
            },
            {
              "name": "75331",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/75331"
            },
            {
              "name": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html",
              "refsource": "CONFIRM",
              "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
            },
            {
              "name": "USN-2670-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-2670-1"
            },
            {
              "name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784192",
              "refsource": "CONFIRM",
              "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784192"
            },
            {
              "name": "FEDORA-2015-10601",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162569.html"
            },
            {
              "name": "[oss-security] 20150621 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2015/06/21/3"
            },
            {
              "name": "1032771",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1032771"
            },
            {
              "name": "openSUSE-SU-2015:1212",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
            },
            {
              "name": "RHSA-2015:1917",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
            },
            {
              "name": "[oss-security] 20150617 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2015/06/17/3"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2015-4696",
    "datePublished": "2015-07-01T14:00:00.000Z",
    "dateReserved": "2015-06-19T00:00:00.000Z",
    "dateUpdated": "2024-08-06T06:25:20.201Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2009-1364 (GCVE-0-2009-1364)

Vulnerability from cvelistv5 – Published: 2009-05-01 17:00 – Updated: 2024-08-07 05:13

Summary

Use-after-free vulnerability in the embedded GD library in libwmf 0.2.8.4 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted WMF file.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

mitre

References

URL

Tags

	http://rhn.redhat.com/errata/RHSA-2009-0457.html	vendor-advisoryx_refsource_REDHAT
	http://secunia.com/advisories/34964	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/35001	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/35190	third-party-advisoryx_refsource_SECUNIA
	https://launchpad.net/bugs/cve/2009-1364	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2015-0…	vendor-advisoryx_refsource_SUSE
	https://www.redhat.com/archives/fedora-package-an…	vendor-advisoryx_refsource_FEDORA
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	https://www.redhat.com/archives/fedora-package-an…	vendor-advisoryx_refsource_FEDORA
	https://bugzilla.redhat.com/show_bug.cgi?id=496864	x_refsource_CONFIRM
	http://wvware.cvs.sourceforge.net/viewvc/wvware/l…	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2015-0…	vendor-advisoryx_refsource_SUSE
	http://secunia.com/advisories/35686	third-party-advisoryx_refsource_SECUNIA
	http://www.securitytracker.com/id?1022154	vdb-entryx_refsource_SECTRACK
	http://secunia.com/advisories/34901	third-party-advisoryx_refsource_SECUNIA
	https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
	http://security.gentoo.org/glsa/glsa-200907-01.xml	vendor-advisoryx_refsource_GENTOO
	http://secunia.com/advisories/35416	third-party-advisoryx_refsource_SECUNIA
	https://www.redhat.com/archives/fedora-package-an…	vendor-advisoryx_refsource_FEDORA
	http://www.debian.org/security/2009/dsa-1796	vendor-advisoryx_refsource_DEBIAN
	http://www.securityfocus.com/bid/34792	vdb-entryx_refsource_BID
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://secunia.com/advisories/35025	third-party-advisoryx_refsource_SECUNIA
	http://www.ubuntu.com/usn/USN-769-1	vendor-advisoryx_refsource_UBUNTU
	http://www.mandriva.com/security/advisories?name=…	vendor-advisoryx_refsource_MANDRIVA
	http://www.vupen.com/english/advisories/2009/1228	vdb-entryx_refsource_VUPEN

Date Public ?

2009-04-30 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T05:13:24.879Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2009:0457",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2009-0457.html"
          },
          {
            "name": "34964",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/34964"
          },
          {
            "name": "35001",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35001"
          },
          {
            "name": "35190",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35190"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://launchpad.net/bugs/cve/2009-1364"
          },
          {
            "name": "openSUSE-SU-2015:1132",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html"
          },
          {
            "name": "FEDORA-2009-5524",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01266.html"
          },
          {
            "name": "SUSE-SR:2009:011",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html"
          },
          {
            "name": "FEDORA-2009-5518",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01263.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496864"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://wvware.cvs.sourceforge.net/viewvc/wvware/libwmf2/src/extra/Makefile.am?hideattic=0\u0026view=log"
          },
          {
            "name": "openSUSE-SU-2015:1134",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html"
          },
          {
            "name": "35686",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35686"
          },
          {
            "name": "1022154",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1022154"
          },
          {
            "name": "34901",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/34901"
          },
          {
            "name": "oval:org.mitre.oval:def:10959",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10959"
          },
          {
            "name": "GLSA-200907-01",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200907-01.xml"
          },
          {
            "name": "35416",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35416"
          },
          {
            "name": "FEDORA-2009-5517",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01269.html"
          },
          {
            "name": "DSA-1796",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2009/dsa-1796"
          },
          {
            "name": "34792",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/34792"
          },
          {
            "name": "libwmf-gdlibrary-code-execution(50290)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50290"
          },
          {
            "name": "35025",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35025"
          },
          {
            "name": "USN-769-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-769-1"
          },
          {
            "name": "MDVSA-2009:106",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:106"
          },
          {
            "name": "ADV-2009-1228",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2009/1228"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2009-04-30T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Use-after-free vulnerability in the embedded GD library in libwmf 0.2.8.4 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted WMF file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-28T12:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "RHSA-2009:0457",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2009-0457.html"
        },
        {
          "name": "34964",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/34964"
        },
        {
          "name": "35001",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35001"
        },
        {
          "name": "35190",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35190"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://launchpad.net/bugs/cve/2009-1364"
        },
        {
          "name": "openSUSE-SU-2015:1132",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html"
        },
        {
          "name": "FEDORA-2009-5524",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01266.html"
        },
        {
          "name": "SUSE-SR:2009:011",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html"
        },
        {
          "name": "FEDORA-2009-5518",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01263.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496864"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://wvware.cvs.sourceforge.net/viewvc/wvware/libwmf2/src/extra/Makefile.am?hideattic=0\u0026view=log"
        },
        {
          "name": "openSUSE-SU-2015:1134",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html"
        },
        {
          "name": "35686",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35686"
        },
        {
          "name": "1022154",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1022154"
        },
        {
          "name": "34901",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/34901"
        },
        {
          "name": "oval:org.mitre.oval:def:10959",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10959"
        },
        {
          "name": "GLSA-200907-01",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200907-01.xml"
        },
        {
          "name": "35416",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35416"
        },
        {
          "name": "FEDORA-2009-5517",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01269.html"
        },
        {
          "name": "DSA-1796",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2009/dsa-1796"
        },
        {
          "name": "34792",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/34792"
        },
        {
          "name": "libwmf-gdlibrary-code-execution(50290)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50290"
        },
        {
          "name": "35025",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35025"
        },
        {
          "name": "USN-769-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-769-1"
        },
        {
          "name": "MDVSA-2009:106",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:106"
        },
        {
          "name": "ADV-2009-1228",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2009/1228"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-1364",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Use-after-free vulnerability in the embedded GD library in libwmf 0.2.8.4 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted WMF file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "RHSA-2009:0457",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2009-0457.html"
            },
            {
              "name": "34964",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/34964"
            },
            {
              "name": "35001",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/35001"
            },
            {
              "name": "35190",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/35190"
            },
            {
              "name": "https://launchpad.net/bugs/cve/2009-1364",
              "refsource": "CONFIRM",
              "url": "https://launchpad.net/bugs/cve/2009-1364"
            },
            {
              "name": "openSUSE-SU-2015:1132",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html"
            },
            {
              "name": "FEDORA-2009-5524",
              "refsource": "FEDORA",
              "url": "https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01266.html"
            },
            {
              "name": "SUSE-SR:2009:011",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html"
            },
            {
              "name": "FEDORA-2009-5518",
              "refsource": "FEDORA",
              "url": "https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01263.html"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=496864",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496864"
            },
            {
              "name": "http://wvware.cvs.sourceforge.net/viewvc/wvware/libwmf2/src/extra/Makefile.am?hideattic=0\u0026view=log",
              "refsource": "CONFIRM",
              "url": "http://wvware.cvs.sourceforge.net/viewvc/wvware/libwmf2/src/extra/Makefile.am?hideattic=0\u0026view=log"
            },
            {
              "name": "openSUSE-SU-2015:1134",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html"
            },
            {
              "name": "35686",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/35686"
            },
            {
              "name": "1022154",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1022154"
            },
            {
              "name": "34901",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/34901"
            },
            {
              "name": "oval:org.mitre.oval:def:10959",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10959"
            },
            {
              "name": "GLSA-200907-01",
              "refsource": "GENTOO",
              "url": "http://security.gentoo.org/glsa/glsa-200907-01.xml"
            },
            {
              "name": "35416",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/35416"
            },
            {
              "name": "FEDORA-2009-5517",
              "refsource": "FEDORA",
              "url": "https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01269.html"
            },
            {
              "name": "DSA-1796",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2009/dsa-1796"
            },
            {
              "name": "34792",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/34792"
            },
            {
              "name": "libwmf-gdlibrary-code-execution(50290)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50290"
            },
            {
              "name": "35025",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/35025"
            },
            {
              "name": "USN-769-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-769-1"
            },
            {
              "name": "MDVSA-2009:106",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:106"
            },
            {
              "name": "ADV-2009-1228",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2009/1228"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2009-1364",
    "datePublished": "2009-05-01T17:00:00.000Z",
    "dateReserved": "2009-04-22T00:00:00.000Z",
    "dateUpdated": "2024-08-07T05:13:24.879Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2015-4695 (GCVE-0-2015-4695)

Vulnerability from cvelistv5 – Published: 2015-07-01 14:00 – Updated: 2024-08-06 06:25

Summary

meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WMF file.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

mitre

References

URL

Tags

	http://www.debian.org/security/2015/dsa-3302	vendor-advisoryx_refsource_DEBIAN
	http://www.securityfocus.com/bid/75329	vdb-entryx_refsource_BID
	https://security.gentoo.org/glsa/201602-03	vendor-advisoryx_refsource_GENTOO
	http://www.oracle.com/technetwork/topics/security…	x_refsource_CONFIRM
	http://www.ubuntu.com/usn/USN-2670-1	vendor-advisoryx_refsource_UBUNTU
	http://lists.fedoraproject.org/pipermail/package-…	vendor-advisoryx_refsource_FEDORA
	http://www.openwall.com/lists/oss-security/2015/06/21/3	mailing-listx_refsource_MLIST
	http://www.securitytracker.com/id/1032771	vdb-entryx_refsource_SECTRACK
	http://lists.opensuse.org/opensuse-updates/2015-0…	vendor-advisoryx_refsource_SUSE
	http://rhn.redhat.com/errata/RHSA-2015-1917.html	vendor-advisoryx_refsource_REDHAT
	http://www.openwall.com/lists/oss-security/2015/06/17/3	mailing-listx_refsource_MLIST
	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug…	x_refsource_CONFIRM

Date Public ?

2015-05-03 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T06:25:20.178Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "DSA-3302",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2015/dsa-3302"
          },
          {
            "name": "75329",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/75329"
          },
          {
            "name": "GLSA-201602-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201602-03"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
          },
          {
            "name": "USN-2670-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-2670-1"
          },
          {
            "name": "FEDORA-2015-10601",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162569.html"
          },
          {
            "name": "[oss-security] 20150621 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2015/06/21/3"
          },
          {
            "name": "1032771",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1032771"
          },
          {
            "name": "openSUSE-SU-2015:1212",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
          },
          {
            "name": "RHSA-2015:1917",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
          },
          {
            "name": "[oss-security] 20150617 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2015/06/17/3"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784205"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-05-03T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WMF file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-21T09:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "DSA-3302",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2015/dsa-3302"
        },
        {
          "name": "75329",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/75329"
        },
        {
          "name": "GLSA-201602-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201602-03"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
        },
        {
          "name": "USN-2670-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-2670-1"
        },
        {
          "name": "FEDORA-2015-10601",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162569.html"
        },
        {
          "name": "[oss-security] 20150621 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2015/06/21/3"
        },
        {
          "name": "1032771",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1032771"
        },
        {
          "name": "openSUSE-SU-2015:1212",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
        },
        {
          "name": "RHSA-2015:1917",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
        },
        {
          "name": "[oss-security] 20150617 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2015/06/17/3"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784205"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2015-4695",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WMF file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "DSA-3302",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2015/dsa-3302"
            },
            {
              "name": "75329",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/75329"
            },
            {
              "name": "GLSA-201602-03",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201602-03"
            },
            {
              "name": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html",
              "refsource": "CONFIRM",
              "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
            },
            {
              "name": "USN-2670-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-2670-1"
            },
            {
              "name": "FEDORA-2015-10601",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162569.html"
            },
            {
              "name": "[oss-security] 20150621 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2015/06/21/3"
            },
            {
              "name": "1032771",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1032771"
            },
            {
              "name": "openSUSE-SU-2015:1212",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
            },
            {
              "name": "RHSA-2015:1917",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
            },
            {
              "name": "[oss-security] 20150617 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2015/06/17/3"
            },
            {
              "name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784205",
              "refsource": "CONFIRM",
              "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784205"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2015-4695",
    "datePublished": "2015-07-01T14:00:00.000Z",
    "dateReserved": "2015-06-19T00:00:00.000Z",
    "dateUpdated": "2024-08-06T06:25:20.178Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2015-4588 (GCVE-0-2015-4588)

Vulnerability from cvelistv5 – Published: 2015-07-01 14:00 – Updated: 2024-08-06 06:18

Summary

Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

mitre

References

URL

Tags

	http://www.debian.org/security/2015/dsa-3302	vendor-advisoryx_refsource_DEBIAN
	http://www.openwall.com/lists/oss-security/2015/06/03/6	mailing-listx_refsource_MLIST
	http://lists.opensuse.org/opensuse-updates/2015-0…	vendor-advisoryx_refsource_SUSE
	https://security.gentoo.org/glsa/201602-03	vendor-advisoryx_refsource_GENTOO
	http://lists.fedoraproject.org/pipermail/package-…	vendor-advisoryx_refsource_FEDORA
	http://www.oracle.com/technetwork/topics/security…	x_refsource_CONFIRM
	http://www.ubuntu.com/usn/USN-2670-1	vendor-advisoryx_refsource_UBUNTU
	https://bugzilla.redhat.com/show_bug.cgi?id=1227243	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-updates/2015-0…	vendor-advisoryx_refsource_SUSE
	http://www.openwall.com/lists/oss-security/2015/06/16/4	mailing-listx_refsource_MLIST
	http://www.securityfocus.com/bid/75230	vdb-entryx_refsource_BID
	http://www.securitytracker.com/id/1032771	vdb-entryx_refsource_SECTRACK
	http://lists.opensuse.org/opensuse-updates/2015-0…	vendor-advisoryx_refsource_SUSE
	http://rhn.redhat.com/errata/RHSA-2015-1917.html	vendor-advisoryx_refsource_REDHAT

Date Public ?

2015-06-03 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T06:18:12.108Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "DSA-3302",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2015/dsa-3302"
          },
          {
            "name": "[oss-security] 20150603 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2015/06/03/6"
          },
          {
            "name": "openSUSE-SU-2015:1132",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html"
          },
          {
            "name": "GLSA-201602-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201602-03"
          },
          {
            "name": "FEDORA-2015-9674",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160668.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
          },
          {
            "name": "USN-2670-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-2670-1"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1227243"
          },
          {
            "name": "openSUSE-SU-2015:1134",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html"
          },
          {
            "name": "[oss-security] 20150615 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2015/06/16/4"
          },
          {
            "name": "75230",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/75230"
          },
          {
            "name": "1032771",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1032771"
          },
          {
            "name": "openSUSE-SU-2015:1212",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
          },
          {
            "name": "RHSA-2015:1917",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-06-03T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted \"run-length count\" in an image in a WMF file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-21T09:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "DSA-3302",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2015/dsa-3302"
        },
        {
          "name": "[oss-security] 20150603 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2015/06/03/6"
        },
        {
          "name": "openSUSE-SU-2015:1132",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html"
        },
        {
          "name": "GLSA-201602-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201602-03"
        },
        {
          "name": "FEDORA-2015-9674",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160668.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
        },
        {
          "name": "USN-2670-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-2670-1"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1227243"
        },
        {
          "name": "openSUSE-SU-2015:1134",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html"
        },
        {
          "name": "[oss-security] 20150615 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2015/06/16/4"
        },
        {
          "name": "75230",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/75230"
        },
        {
          "name": "1032771",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1032771"
        },
        {
          "name": "openSUSE-SU-2015:1212",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
        },
        {
          "name": "RHSA-2015:1917",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2015-4588",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted \"run-length count\" in an image in a WMF file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "DSA-3302",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2015/dsa-3302"
            },
            {
              "name": "[oss-security] 20150603 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2015/06/03/6"
            },
            {
              "name": "openSUSE-SU-2015:1132",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html"
            },
            {
              "name": "GLSA-201602-03",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201602-03"
            },
            {
              "name": "FEDORA-2015-9674",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160668.html"
            },
            {
              "name": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html",
              "refsource": "CONFIRM",
              "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
            },
            {
              "name": "USN-2670-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-2670-1"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1227243",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1227243"
            },
            {
              "name": "openSUSE-SU-2015:1134",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html"
            },
            {
              "name": "[oss-security] 20150615 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2015/06/16/4"
            },
            {
              "name": "75230",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/75230"
            },
            {
              "name": "1032771",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1032771"
            },
            {
              "name": "openSUSE-SU-2015:1212",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
            },
            {
              "name": "RHSA-2015:1917",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2015-4588",
    "datePublished": "2015-07-01T14:00:00.000Z",
    "dateReserved": "2015-06-15T00:00:00.000Z",
    "dateUpdated": "2024-08-06T06:18:12.108Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2015-0848 (GCVE-0-2015-0848)

Vulnerability from cvelistv5 – Published: 2015-07-01 14:00 – Updated: 2024-08-06 04:26

Summary

Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image.

Severity ?

No CVSS data available.

CWE

n/a

Assigner

debian

References

URL

Tags

	http://www.debian.org/security/2015/dsa-3302	vendor-advisoryx_refsource_DEBIAN
	http://www.openwall.com/lists/oss-security/2015/06/01/2	mailing-listx_refsource_MLIST
	http://lists.fedoraproject.org/pipermail/package-…	vendor-advisoryx_refsource_FEDORA
	http://lists.fedoraproject.org/pipermail/package-…	vendor-advisoryx_refsource_FEDORA
	http://lists.opensuse.org/opensuse-updates/2015-0…	vendor-advisoryx_refsource_SUSE
	https://security.gentoo.org/glsa/201602-03	vendor-advisoryx_refsource_GENTOO
	http://lists.fedoraproject.org/pipermail/package-…	vendor-advisoryx_refsource_FEDORA
	http://www.oracle.com/technetwork/topics/security…	x_refsource_CONFIRM
	http://www.ubuntu.com/usn/USN-2670-1	vendor-advisoryx_refsource_UBUNTU
	http://lists.opensuse.org/opensuse-updates/2015-0…	vendor-advisoryx_refsource_SUSE
	http://www.securityfocus.com/bid/74923	vdb-entryx_refsource_BID
	http://www.securitytracker.com/id/1032771	vdb-entryx_refsource_SECTRACK
	http://lists.opensuse.org/opensuse-updates/2015-0…	vendor-advisoryx_refsource_SUSE
	http://rhn.redhat.com/errata/RHSA-2015-1917.html	vendor-advisoryx_refsource_REDHAT

Date Public ?

2015-06-01 00:00

Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T04:26:11.261Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "DSA-3302",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2015/dsa-3302"
          },
          {
            "name": "[oss-security] 20150601 CVE-2015-0848 - Heap overflow on libwmf0.2-7",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2015/06/01/2"
          },
          {
            "name": "FEDORA-2015-14847",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165547.html"
          },
          {
            "name": "FEDORA-2015-14848",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168507.html"
          },
          {
            "name": "openSUSE-SU-2015:1132",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html"
          },
          {
            "name": "GLSA-201602-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201602-03"
          },
          {
            "name": "FEDORA-2015-9674",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160668.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
          },
          {
            "name": "USN-2670-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-2670-1"
          },
          {
            "name": "openSUSE-SU-2015:1134",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html"
          },
          {
            "name": "74923",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/74923"
          },
          {
            "name": "1032771",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1032771"
          },
          {
            "name": "openSUSE-SU-2015:1212",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
          },
          {
            "name": "RHSA-2015:1917",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-06-01T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-09-21T09:57:01.000Z",
        "orgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5",
        "shortName": "debian"
      },
      "references": [
        {
          "name": "DSA-3302",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2015/dsa-3302"
        },
        {
          "name": "[oss-security] 20150601 CVE-2015-0848 - Heap overflow on libwmf0.2-7",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2015/06/01/2"
        },
        {
          "name": "FEDORA-2015-14847",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165547.html"
        },
        {
          "name": "FEDORA-2015-14848",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168507.html"
        },
        {
          "name": "openSUSE-SU-2015:1132",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html"
        },
        {
          "name": "GLSA-201602-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201602-03"
        },
        {
          "name": "FEDORA-2015-9674",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160668.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
        },
        {
          "name": "USN-2670-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-2670-1"
        },
        {
          "name": "openSUSE-SU-2015:1134",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html"
        },
        {
          "name": "74923",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/74923"
        },
        {
          "name": "1032771",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1032771"
        },
        {
          "name": "openSUSE-SU-2015:1212",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
        },
        {
          "name": "RHSA-2015:1917",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@debian.org",
          "ID": "CVE-2015-0848",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "DSA-3302",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2015/dsa-3302"
            },
            {
              "name": "[oss-security] 20150601 CVE-2015-0848 - Heap overflow on libwmf0.2-7",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2015/06/01/2"
            },
            {
              "name": "FEDORA-2015-14847",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165547.html"
            },
            {
              "name": "FEDORA-2015-14848",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168507.html"
            },
            {
              "name": "openSUSE-SU-2015:1132",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html"
            },
            {
              "name": "GLSA-201602-03",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201602-03"
            },
            {
              "name": "FEDORA-2015-9674",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160668.html"
            },
            {
              "name": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html",
              "refsource": "CONFIRM",
              "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"
            },
            {
              "name": "USN-2670-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-2670-1"
            },
            {
              "name": "openSUSE-SU-2015:1134",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html"
            },
            {
              "name": "74923",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/74923"
            },
            {
              "name": "1032771",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1032771"
            },
            {
              "name": "openSUSE-SU-2015:1212",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html"
            },
            {
              "name": "RHSA-2015:1917",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2015-1917.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5",
    "assignerShortName": "debian",
    "cveId": "CVE-2015-0848",
    "datePublished": "2015-07-01T14:00:00.000Z",
    "dateReserved": "2015-01-07T00:00:00.000Z",
    "dateUpdated": "2024-08-06T04:26:11.261Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Log in or create an account to share your comment.

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.