Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 1235665 - (CVE-2015-4695) CVE-2015-4695 libwmf: heap buffer overread in meta.h
CVE-2015-4695 libwmf: heap buffer overread in meta.h
Status: CLOSED ERRATA
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
low Severity low
: ---
: ---
Assigned To: Red Hat Product Security
impact=low,public=20150504,reported=2...
: Security
Depends On: 1227428 1235671 1239161 1239162
Blocks: 1227245
  Show dependency treegraph
 
Reported: 2015-06-25 09:11 EDT by Vasyl Kaigorodov
Modified: 2016-01-22 07:32 EST (History)
2 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
It was discovered that libwmf did not properly process certain WMF files. By tricking a victim into opening a specially crafted WMF file in an application using libwmf, a remote attacker could possibly exploit this flaw to cause a crash or execute arbitrary code with the privileges of the user running the application.
Story Points: ---
Clone Of:
Environment:
Last Closed: 2015-10-21 05:31:22 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2015:1917 normal SHIPPED_LIVE Important: libwmf security update 2015-10-20 16:10:07 EDT

  None (edit)
Description Vasyl Kaigorodov 2015-06-25 09:11:06 EDT 
A read from invalid address was reported in libwmf in couple of places in meta.h file
Originally reported in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784205
Patch is attached to BZ 1227243: https://bugzilla.redhat.com/attachment.cgi?id=1042306
Comment 1 Vasyl Kaigorodov 2015-06-25 09:17:17 EDT 
Created libwmf tracking bugs for this issue:

Affects: fedora-all [bug 1235671]
Comment 3 errata-xmlrpc 2015-10-20 12:10:59 EDT 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7
  Red Hat Enterprise Linux 6

Via RHSA-2015:1917 https://rhn.redhat.com/errata/RHSA-2015-1917.html
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.