Vulnerability CVE-2015-4696: Information
Description
Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) via a crafted WMF file to the (1) wmf2gd or (2) wmf2eps command.
Severity: MEDIUM (4.3)
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
libwmf | sisyphus | 0.2.8.4-alt13 | 0.2.8.4-alt13 | ALT-PU-2017-2327-1 | 188953 | Fixed |
libwmf | p10 | 0.2.8.4-alt13 | 0.2.8.4-alt13 | ALT-PU-2017-2327-1 | 188953 | Fixed |
libwmf | p9 | 0.2.8.4-alt13 | 0.2.8.4-alt13 | ALT-PU-2017-2327-1 | 188953 | Fixed |
libwmf | c10f1 | 0.2.8.4-alt13 | 0.2.8.4-alt13 | ALT-PU-2017-2327-1 | 188953 | Fixed |
libwmf | c9f2 | 0.2.8.4-alt13 | 0.2.8.4-alt13 | ALT-PU-2017-2327-1 | 188953 | Fixed |