Explore top 10 tips to secure your open-source projects now. Read More
×
libwmf could be made to crash or run programs as your login if it opened a
specially crafted file.
Software Description:
- libwmf: Windows metafile conversion tools
Details:
Fernando Muñoz and Stefan Cornelius discovered that libwmf incorrectly
handled certain malformed images. If a user or automated system were
tricked into opening a crafted image file, an attacker could cause a denial
of service or execute arbitrary code with privileges of the user invoking
the program.
The problem can be corrected by updating your system to the following package versions: Ubuntu 15.04: libwmf0.2-7 0.2.8.4-10.3ubuntu1.15.04.1 Ubuntu 14.10: libwmf0.2-7 0.2.8.4-10.3ubuntu1.14.10.1 Ubuntu 14.04 LTS: libwmf0.2-7 0.2.8.4-10.3ubuntu1.14.04.1 Ubuntu 12.04 LTS: libwmf0.2-7 0.2.8.4-10ubuntu1.1 In general, a standard system update will make all the necessary changes.
https://ubuntu.com/security/notices/USN-2670-1
CVE-2015-0848, CVE-2015-4588, CVE-2015-4695, CVE-2015-4695,
CVE-2015-4696
Get the latest Linux and open source security news straight to your inbox.