Alerts This Week
Warning Icon 1 923
Alerts This Week
Warning Icon 1 923

Fedora 21 2015-9674 Critical Update: Libwmf Heap Overflow Patch

fedora
Calendar Grey June 24, 2015
Dist Fedora Esm H88
Investigate the security notice related to libwmf on Fedora 21, as it pertains to a significant heap overflow vulnerability found in BMP image processing.
CVE-2015-0848 heap overflow when decoding BMP images CVE-2015-0848 heap overflow when decoding BMP images

Summary

A library for reading and converting Windows MetaFile vector graphics (WMF).

Update Information:

CVE-2015-0848 heap overflow when decoding BMP images CVE-2015-0848 heap overflow when decoding BMP images

Topics%20covered

Topics Covered

security advisory fedora update critical heap overflow image decoding libwmf

Change Log

* Mon Jun 8 2015 Caolán McNamara - 0.2.8.4-43 - Resolves: rhbz#1227244 CVE-2015-0848 heap overflow when decoding BMP images * Tue Jun 2 2015 Caolán McNamara - 0.2.8.4-42 - Resolves: rhbz#1227244 CVE-2015-0848 heap overflow when decoding BMP images * Sat Feb 21 2015 Till Maas - 0.2.8.4-41 - Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code

References


[ 1 ] Bug #1227243 - CVE-2015-0848, CVE-2015-4588 libwmf: heap overflow when decoding BMP images https://bugzilla.redhat.com/show_bug.cgi?id=1227243

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libwmf' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libwmf
Product: Fedora 21
Version: 0.2.8.4
Release: 43.fc21
URL:
Summary: Windows MetaFile Library

Topics%20covered

Topics Covered

security advisory fedora update critical heap overflow image decoding libwmf

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here