VYPR

rpm package

suse/libwmf&distro=SUSE Linux Enterprise Desktop 12

pkg:rpm/suse/libwmf&distro=SUSE%20Linux%20Enterprise%20Desktop%2012

Vulnerabilities (5)

  • CVE-2015-4696Jul 1, 2015
    affected < 0.2.8.4-242.3fixed 0.2.8.4-242.3

    Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) via a crafted WMF file to the (1) wmf2gd or (2) wmf2eps command.

  • CVE-2015-4695Jul 1, 2015
    affected < 0.2.8.4-242.3fixed 0.2.8.4-242.3

    meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WMF file.

  • CVE-2015-4588Jul 1, 2015
    affected < 0.2.8.4-242.3fixed 0.2.8.4-242.3

    Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.

  • CVE-2015-0848Jul 1, 2015
    affected < 0.2.8.4-242.3fixed 0.2.8.4-242.3

    Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image.

  • CVE-2009-1364May 1, 2009
    affected < 0.2.8.4-242.3fixed 0.2.8.4-242.3

    Use-after-free vulnerability in the embedded GD library in libwmf 0.2.8.4 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted WMF file.