Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Ubuntu 20.04: UBUNTU-2020-78901 High: Libpng Memory Corruption

fedora
Calendar Grey July 30, 2015
Dist Fedora Esm H88
Patch for Fedora 21 libwmf resolves critical memory issues with multiple vulnerabilities confirmed.
CVE-2015-0848 Heap overflow CVE-2015-4588 RLE decoding doesn't check that the "count" fits into the image CVE-2015-4695 meta_pen_create heap buffer overflow CVE-2015-4696 wmf2gd/wm...

Summary

A library for reading and converting Windows MetaFile vector graphics (WMF).

Update Information:

CVE-2015-0848 Heap overflow CVE-2015-4588 RLE decoding doesn't check that the "count" fits into the image CVE-2015-4695 meta_pen_create heap buffer overflow CVE-2015-4696 wmf2gd/wmf2eps use after free

Topics%20covered

Topics Covered

security advisory buffer overflow software update Fedora heap overflow libwmf RLE decoding

Change Log

* Tue Jun 23 2015 Caolán McNamara - 0.2.8.4-45 - Related: rhbz#1227244 CVE-2015-4695 meta_pen_create heap buffer overflow - Related: rhbz#1227244 CVE-2015-4696 wmf2gd/wmf2eps use after free * Wed Jun 17 2015 Fedora Release Engineering - 0.2.8.4-44 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Tue Jun 9 2015 Caolán McNamara - 0.2.8.4-43 - Resolves: rhbz#1227244 CVE-2015-0848 heap overflow when decoding BMP images * Tue Jun 2 2015 Caolán McNamara - 0.2.8.4-42 - Resolves: rhbz#1227244 CVE-2015-0848 heap overflow when decoding BMP images * Sat Feb 21 2015 Till Maas - 0.2.8.4-41 - Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code

References


[ 1 ] Bug #1235671 - CVE-2015-4696 CVE-2015-4695 libwmf: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1235671

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libwmf' at the command line. For more information, refer to "Managing Software with yum", available at .

Name: libwmf
Product: Fedora 21
Version: 0.2.8.4
Release: 45.fc21
URL:
Summary: Windows MetaFile Library

Topics%20covered

Topics Covered

security advisory buffer overflow software update Fedora heap overflow libwmf RLE decoding

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here