CVE-2008-2149

Publication date 12 May 2008

Last updated 24 July 2024


Ubuntu priority

Description

Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end.

Status

Package Ubuntu Release Status
wordnet 9.10 karmic
Fixed 1:3.0-11ubuntu0.1
9.04 jaunty
Fixed 1:3.0-11ubuntu0.1
8.10 intrepid
Fixed 1:3.0-11ubuntu0.1
8.04 LTS hardy
Fixed 1:3.0-6ubuntu0.1
7.10 gutsy Ignored end of life, was needed
7.04 feisty
Fixed 1:2.1-4ubuntu0.1
6.06 LTS dapper Ignored end of life

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
wordnet

Access our resources on patching vulnerabilities