CVE-2011-2975
Published: 1 August 2011
Double free vulnerability in the msAddImageSymbol function in mapsymbol.c in MapServer before 6.0.1 might allow remote attackers to cause a denial of service (application crash) or have unspecified other impact via crafted mapfile data.
Notes
Author | Note |
---|---|
mdeslaur |
seems to only affect 6.x |
Priority
Status
Package | Release | Status |
---|---|---|
mapserver
Launchpad, Ubuntu, Debian |
hardy |
Ignored
(end of life)
|
lucid |
Not vulnerable
(5.6.1-1ubuntu1.2)
|
|
maverick |
Not vulnerable
(5.6.5-1ubuntu0.1)
|
|
natty |
Not vulnerable
(5.6.5-2ubuntu0.1)
|
|
upstream |
Released
(6.0.1)
|
|
Patches:
upstream: http://trac.osgeo.org/mapserver/changeset/11861 |