Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 438
Alerts This Week
Warning Icon 1 438

Gentoo: GLSA-200702-12 Normal: CHMlib Remote Code Execution Risk

gentoo
Calendar Grey February 27, 2007
Dist Gentoo Esm H88
Gentoo Linux Advisory GLSA 202310-15 describes a vulnerability in the CHMlib library that can lead to unauthorized code execution. Severity: Moderate.
A memory corruption vulnerability in CHMlib could lead to the remote execution of arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200702-12 https://security.gentoo.org/ Severity: Normal Title: CHMlib: User-assisted remote execution of arbitrary code Date: February 27, 2007 Bugs: #163989 ID: 200702-12

Synopsis ======= A memory corruption vulnerability in CHMlib could lead to the remote execution of arbitrary code.
Background ========= CHMlib is a library for the MS CHM (Compressed HTML) file format plus extracting and HTTP server utils.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-doc/chmlib < 0.39 >= 0.39
========== When certain CHM files that contain tables and objects stored in pages are parsed by CHMlib, an unsanitized value is pas...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround