Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 538
Alerts This Week
Warning Icon 1 538

Gentoo: GLSA-200612-01 Normal: wv Library Integer Overflow Risk

gentoo
Calendar Grey December 7, 2006
Dist Gentoo Esm H88
The CVE-2023-1001 advisory highlights various buffer overflows in the libexample library that may result in unauthorized access.
The wv library is vulnerable to multiple integer overflows which could lead to the execution of arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200612-01 https://security.gentoo.org/ Severity: Normal Title: wv library: Multiple integer overflows Date: December 07, 2006 Bugs: #153800 ID: 200612-01

Synopsis ======= The wv library is vulnerable to multiple integer overflows which could lead to the execution of arbitrary code.
Background ========= wv is a library for conversion of MS Word DOC and RTF files.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-text/wv < 1.2.3-r1 >= 1.2.3-r1
========== The wv library fails to do proper arithmetic checks in multiple places, possibly leading to integer overflows.
Impact ===== An attacker could craft a malicious file th...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround