Stack-based buffer overflow in the separate_word function in tokenize.c in Link Grammar 4.1b and possibly other versions, as used in AbiWord Link Grammar 4.2.4, allows remote attackers to execute arbitrary code via a long word, as reachable through the separate_sentence function.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | link-grammar | < 4.2.5-1 | link-grammar_4.2.5-1_all.deb |
Debian | 11 | all | link-grammar | < 4.2.5-1 | link-grammar_4.2.5-1_all.deb |
Debian | 10 | all | link-grammar | < 4.2.5-1 | link-grammar_4.2.5-1_all.deb |
Debian | 999 | all | link-grammar | < 4.2.5-1 | link-grammar_4.2.5-1_all.deb |
Debian | 13 | all | link-grammar | < 4.2.5-1 | link-grammar_4.2.5-1_all.deb |