Your submission was sent successfully! Close

CVE-2015-0848

Published: 1 July 2015

Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image.

Notes

AuthorNote
seth-arnold 
See also https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784205
Priority

Medium

Status

Package Release Status
libwmf
Launchpad, Ubuntu, Debian 		precise
Released (0.2.8.4-10ubuntu1.1)
trusty Does not exist
(trusty was released [0.2.8.4-10.3ubuntu1.14.04.1])
upstream Needed

utopic
Released (0.2.8.4-10.3ubuntu1.14.10.1)
vivid
Released (0.2.8.4-10.3ubuntu1.15.04.1)

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading