MiracleLinux 7 : libwmf-0.2.8.4-41.el7 (AXSA:2015-512:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-512:01 advisory. A library for reading and converting Windows MetaFile vector graphics WMF. Security issues fixed with this release: CVE-2015-0848 Heap-based buffer...

Linux Distros Unpatched Vulnerability : CVE-2015-4696

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps...

SUSE CVE-2015-4696

Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...

Buffer Overflow

libwmf is a library for reading and converting Windows Metafile Format WMF vector graphics. libwmf is used by applications such as GIMP and ImageMagick. It was discovered that libwmf did not correctly process certain WMF Windows Metafiles with embedded BMP images. By tricking a victim into openin...

Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : libwmf (SSA:2018-120-01)

New libwmf packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-120-01. The text itself is copyrig...

GLSA-201602-03 : libwmf: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201602-03 libwmf: Multiple vulnerabilities Multiple vulnerabilities have been discovered in libwmf. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could possibly execute arbitrary code...

Gentoo Security Advisory GLSA 201602-03

Gentoo Linux Local Security Checks GLSA 201602-03 SPDX-FileCopyrightText: 2016 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

Amazon Linux AMI : libwmf (ALAS-2015-604)

It was discovered that libwmf did not correctly process certain WMF Windows Metafiles with embedded BMP images. By tricking a victim into opening a specially crafted WMF file in an application using libwmf, a remote attacker could possibly use this flaw to execute arbitrary code with the privileg...

Scientific Linux Security Update : libwmf on SL6.x, SL7.x i386/x86_64 (20151020)

It was discovered that libwmf did not correctly process certain WMF Windows Metafiles with embedded BMP images. By tricking a victim into opening a specially crafted WMF file in an application using libwmf, a remote attacker could possibly use this flaw to execute arbitrary code with the privileg...

CentOS 6 / 7 : libwmf (CESA-2015:1917)

Updated libwmf packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

RedHat Update for libwmf RHSA-2015:1917-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 6 / 7 : libwmf (ELSA-2015-1917)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-1917 advisory. - Resolves: rhbz1227428 - CVE-2015-0848 CVE-2015-4588 CVE-2015-4695 CVE-2015-4696 Tenable has extracted the preceding description block directly fr...

CentOS Update for libwmf CESA-2015:1917 centos7

Check the version of libwmf SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882298";...

libwmf security update

CentOS Errata and Security Advisory CESA-2015:1917 Updated libwmf packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base...

Important: Red Hat Security Advisory: libwmf security update

Updated libwmf packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

Mageia: Security Advisory (MGASA-2015-0261)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED12 Security Update : libwmf (SUSE-SU-2015:1484-1)

libwmf was updated to fix five security issues. These security issues were fixed : - CVE-2009-1364: Fixed realloc return value usage bsc495842, bnc831299 - CVE-2015-0848: Heap overflow on libwmf0.2-7 bsc933109 - CVE-2015-4588: DecodeImage did not check that the run-length 'count' fits into the...

SUSE SLED11 Security Update : libwmf (SUSE-SU-2015:1378-1)

libwmf was updated to fix four security issues. These security issues were fixed : - CVE-2015-4588: Heap-based buffer overflow in the DecodeImage function allowed remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted 'run-length count' in an image in...

Fedora 21 : libwmf-0.2.8.4-45.fc21 (2015-10601)

CVE-2015-0848 Heap overflow CVE-2015-4588 RLE decoding doesn't check that the 'count' fits into the image CVE-2015-4695 metapencreate heap buffer overflow CVE-2015-4696 wmf2gd/wmf2eps use after free Note that Tenable Network Security has extracted the preceding description block directly from the...

Fedora Update for libwmf FEDORA-2015-10627

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...