Explore top 10 tips to secure your open-source projects now. Read More
×Gentoo Linux Security Advisory GLSA 200612-01
https://security.gentoo.org/
Severity: Normal
Title: wv library: Multiple integer overflows
Date: December 07, 2006
Bugs: #153800
ID: 200612-01
Synopsis
=======
The wv library is vulnerable to multiple integer overflows which could
lead to the execution of arbitrary code.
Background
=========
wv is a library for conversion of MS Word DOC and RTF files.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 app-text/wv < 1.2.3-r1 >= 1.2.3-r1
==========
The wv library fails to do proper arithmetic checks in multiple places,
possibly leading to integer overflows.
Impact
=====
An attacker could craft a malicious file th...
style>.gentoo_availability{display:block;}
Get the latest Linux and open source security news straight to your inbox.