Search for packages
| purl | pkg:deb/ubuntu/libwmf@0.2.8.4-10.3ubuntu1.14.04.1 |
| Next non-vulnerable version | 0.2.8.4-12 |
| Latest non-vulnerable version | 0.2.8.4-12 |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-m27g-my7g-aaaq
Aliases: CVE-2016-9011 |
The wmf_malloc function in api.c in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (application crash) via a crafted wmf file, which triggers a memory allocation failure. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-9xxq-5vck-aaae | Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file. |
CVE-2015-4588
|
| VCID-u5p9-dcv9-aaad | Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) via a crafted WMF file to the (1) wmf2gd or (2) wmf2eps command. |
CVE-2015-4696
|
| VCID-z32g-xxgm-aaab | meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WMF file. |
CVE-2015-4695
|
| VCID-zs3c-bdqd-aaaf | Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image. |
CVE-2015-0848
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|