Lucene search
DebianDEBIAN:DLA-253-1:570D2HistoryJun 26, 2015 - 7:14 a.m.
[SECURITY] [DLA 253-1] libwmf security update
2015-06-2607:14:35
lists.debian.org
6
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.034 Low
EPSS
Percentile
91.4%
Package : libwmf
Version : 0.2.8.4-6.2+deb6u1
CVE ID : CVE-2015-0848 CVE-2015-4588
Debian Bug : #787644
The following vulnerabilities were discovered in the Windows Metafile
conversion library when reading BMP images embedded into WMF files:
CVE-2015-0848
A heap overflow when decoding embedded BMP images that don't use 8 bits per
pixel.
CVE-2015-4588
A missing check in the RLE decoding of embedded BMP images.
We recommend that you update your libwmf packages.
Attachment:
signature.asc
Description: Digital signature
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 7 | armhf | libwmf-dev | < 0.2.8.4-10.3+deb7u1 | libwmf-dev_0.2.8.4-10.3+deb7u1_armhf.deb |
| Debian | 7 | i386 | libwmf0.2-7 | < 0.2.8.4-10.3+deb7u1 | libwmf0.2-7_0.2.8.4-10.3+deb7u1_i386.deb |
| Debian | 7 | all | libwmf | < 0.2.8.4-10.3+deb7u1 | libwmf_0.2.8.4-10.3+deb7u1_all.deb |
| Debian | 8 | kfreebsd-i386 | libwmf0.2-7 | < 0.2.8.4-10.3+deb8u1 | libwmf0.2-7_0.2.8.4-10.3+deb8u1_kfreebsd-i386.deb |
| Debian | 7 | mips | libwmf0.2-7 | < 0.2.8.4-10.3+deb7u1 | libwmf0.2-7_0.2.8.4-10.3+deb7u1_mips.deb |
| Debian | 8 | mips | libwmf0.2-7 | < 0.2.8.4-10.3+deb8u1 | libwmf0.2-7_0.2.8.4-10.3+deb8u1_mips.deb |
| Debian | 7 | powerpc | libwmf-bin | < 0.2.8.4-10.3+deb7u1 | libwmf-bin_0.2.8.4-10.3+deb7u1_powerpc.deb |
| Debian | 7 | amd64 | libwmf-dev | < 0.2.8.4-10.3+deb7u1 | libwmf-dev_0.2.8.4-10.3+deb7u1_amd64.deb |
| Debian | 7 | mipsel | libwmf0.2-7 | < 0.2.8.4-10.3+deb7u1 | libwmf0.2-7_0.2.8.4-10.3+deb7u1_mipsel.deb |
| Debian | 7 | s390x | libwmf0.2-7 | < 0.2.8.4-10.3+deb7u1 | libwmf0.2-7_0.2.8.4-10.3+deb7u1_s390x.deb |
Related
fedora
fedora
[SECURITY] Fedora 21 Update: libwmf-0.2.8.4-43.fc21
2015-06-24 16:00:46
[SECURITY] Fedora 22 Update: libwmf-0.2.8.4-45.fc22
2015-07-10 19:12:08
[SECURITY] Fedora 21 Update: libwmf-0.2.8.4-45.fc21
2015-07-30 00:37:46
nessus
nessus
openSUSE Security Update : libwmf (openSUSE-2015-444)
2015-06-25 00:00:00
Debian DLA-253-1 : libwmf security update
2015-06-26 00:00:00
Fedora 21 : libwmf-0.2.8.4-43.fc21 (2015-9674)
2015-06-25 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-253-1)
2023-03-08 00:00:00
Fedora Update for libwmf FEDORA-2015-9674
2015-06-25 00:00:00
RedHat Update for libwmf RHSA-2015:1917-01
2015-10-21 00:00:00
osv
osv
libwmf - security update
2015-06-26 00:00:00
libwmf - security update
2015-07-06 00:00:00
veracode
veracode
Buffer Overflow
2019-05-02 05:19:32
Denial Of Service
2019-05-02 05:19:32
Denial Of Service
2019-05-02 05:19:32
oraclelinux
oraclelinux
libwmf security update
2015-10-20 00:00:00
centos
centos
libwmf security update
2015-10-20 17:05:25
ubuntu
ubuntu
libwmf vulnerabilities
2015-07-08 00:00:00
redhat
redhat
(RHSA-2015:1917) Important: libwmf security update
2015-10-20 00:00:00
securityvulns
securityvulns
[USN-2670-1] libwmf vulnerabilities
2015-07-14 00:00:00
libwmf multiple security vulnerabilities
2015-07-14 00:00:00
gentoo
gentoo
libwmf: Multiple vulnerabilities
2016-02-27 00:00:00
mageia
mageia
Updated libwmf package fixes security vulnerability
2015-07-05 20:22:03
debian
debian
[SECURITY] [DSA 3302-1] libwmf security update
2015-07-06 20:58:53
cve
cve
CVE-2015-4588
2015-07-01 14:59:00
CVE-2015-0848
2015-07-01 14:59:00
debiancve
debiancve
CVE-2015-4588
2015-07-01 14:59:00
CVE-2015-0848
2015-07-01 14:59:00
prion
prion
Heap overflow
2015-07-01 14:59:00
Heap overflow
2015-07-01 14:59:00
ubuntucve
ubuntucve
CVE-2015-4588
2015-07-01 00:00:00
CVE-2015-0848
2015-07-01 00:00:00
amazon
amazon
Important: libwmf
2015-10-27 13:51:00
freebsd
freebsd
libwmf -- multiple vulnerabilities
2004-10-12 00:00:00
archlinux
archlinux
[ASA-201701-1] libwmf: multiple issues
2017-01-01 00:00:00
slackware
slackware
[slackware-security] libwmf
2018-05-01 01:19:49
kitploit
kitploit
arch-audit - An utility like pkg-audit for Arch Linux
2016-10-15 14:30:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.034 Low
EPSS
Percentile
91.4%
Related for DEBIAN:DLA-253-1:570D2