Vulnerability CVE-2015-4695: Information

Description

meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WMF file.

Severity: MEDIUM (5.0)

URL: https://nvd.nist.gov/vuln/detail/CVE-2015-4695
Published: July 1, 2015
Modified: Sept. 22, 2017
Error type identifier: CWE-119

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
libwmfsisyphus0.2.8.4-alt130.2.8.4-alt13ALT-PU-2017-2327-1188953Fixed
libwmfp100.2.8.4-alt130.2.8.4-alt13ALT-PU-2017-2327-1188953Fixed
libwmfp90.2.8.4-alt130.2.8.4-alt13ALT-PU-2017-2327-1188953Fixed
libwmfc10f10.2.8.4-alt130.2.8.4-alt13ALT-PU-2017-2327-1188953Fixed
libwmfc9f20.2.8.4-alt130.2.8.4-alt13ALT-PU-2017-2327-1188953Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784205
  • Exploit
[oss-security] 20150621 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7
    [oss-security] 20150617 Re: CVE-2015-0848 - Heap overflow on libwmf0.2-7
      http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
        75329
          GLSA-201602-03
            FEDORA-2015-10601
              RHSA-2015:1917
                USN-2670-1
                  DSA-3302
                    openSUSE-SU-2015:1212
                      1032771

                          1. Configuration 1

                            cpe:2.3:a:wvware:libwmf:0.2.8.4:*:*:*:*:*:*:*
                        VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
                        Version: v24.5.0
                        Back to top