VYPR

rpm package

suse/libwmf&distro=SUSE Linux Enterprise Desktop 11 SP4

pkg:rpm/suse/libwmf&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4

Vulnerabilities (4)

  • CVE-2015-4696Jul 1, 2015
    affected < 0.2.8.4-206.29.29.1fixed 0.2.8.4-206.29.29.1

    Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) via a crafted WMF file to the (1) wmf2gd or (2) wmf2eps command.

  • CVE-2015-4695Jul 1, 2015
    affected < 0.2.8.4-206.29.29.1fixed 0.2.8.4-206.29.29.1

    meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WMF file.

  • CVE-2015-4588Jul 1, 2015
    affected < 0.2.8.4-206.29.29.1fixed 0.2.8.4-206.29.29.1

    Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.

  • CVE-2015-0848Jul 1, 2015
    affected < 0.2.8.4-206.29.29.1fixed 0.2.8.4-206.29.29.1

    Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image.