What is the severity of CVE-2011-2975?

CVE-2011-2975 has a severity that may lead to application crash or denial of service.

How do I fix CVE-2011-2975?

To fix CVE-2011-2975, you should upgrade to MapServer version 6.0.1 or later.

Which versions of MapServer are affected by CVE-2011-2975?

CVE-2011-2975 affects MapServer versions 4.10.7 and lower, including multiple beta and release candidates prior to 6.0.1.

What type of vulnerability is CVE-2011-2975?

CVE-2011-2975 is a double free vulnerability that could be exploited by remote attackers.

What impact could an exploit of CVE-2011-2975 have?

Exploitation of CVE-2011-2975 could lead to application crashes and potentially other unspecified impacts.

Vulnerability/
CVE-2011-2975

medium

6.8

CWE

399 415

1/8/2011

3/10/2022

6/8/2024

CVE-2011-2975: Double Free

First published: Mon Aug 01 2011(Updated: )

Double free vulnerability in the msAddImageSymbol function in mapsymbol.c in MapServer before 6.0.1 might allow remote attackers to cause a denial of service (application crash) or have unspecified other impact via crafted mapfile data.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
MapServer	=5.6.4
MapServer	=6.0.0-rc2
MapServer	=6.0.0-beta3
MapServer	=6.0.0-beta5
MapServer	=6.0.0-rc1
MapServer	=6.0.0-beta1
MapServer	=5.2.2
MapServer	=5.6.5
MapServer	=5.6.7
MapServer	=6.0.0-beta7
MapServer	=6.0.0-beta6
MapServer	=4.10.7
MapServer	=5.6.6
MapServer	=6.0.0-beta4
MapServer	=5.2.3
MapServer	=6.0.0-beta2
MapServer	=4.2.0-beta1
MapServer	=4.4.0-beta1
MapServer	=4.4.0-beta2
MapServer	=4.6.0-beta1
MapServer	=4.6.0-beta2
MapServer	=4.6.0-beta3
MapServer	=4.8.0-beta2
MapServer	=4.8.0-beta1
MapServer	=4.8.0-beta3
MapServer	=4.8.0-rc2
MapServer	=4.8.0-rc1
MapServer	=4.10.0
MapServer	=4.10.0-beta1
MapServer	=4.10.0-rc1
MapServer	=4.10.0-beta3
MapServer	=4.10.0-beta2
MapServer	=4.10.4
MapServer	=4.10.2
MapServer	=4.10.1
MapServer	=4.10.3
MapServer	=4.10.5
MapServer	=5.0.0-beta5
MapServer	=5.0.0-beta6
MapServer	=5.0.0-beta3
MapServer	=5.0.0-beta4
MapServer	=5.0.0-beta1
MapServer	=5.0.0-beta2
MapServer	=5.0.0-rc1
MapServer	=5.2.0
MapServer	=5.2.0-beta2
MapServer	=5.2.0-beta1
MapServer	=5.2.0-beta3
MapServer	=5.2.0-beta4
MapServer	=5.2.0-rc1
MapServer	=5.2.1
MapServer	=5.4.0
MapServer	=5.4.0-beta1
MapServer	=5.4.0-beta2
MapServer	=5.4.0-beta4
MapServer	=5.4.0-beta3
MapServer	=5.4.0-rc2
MapServer	=5.4.0-rc1
MapServer	=5.4.2
MapServer	=5.4.1
MapServer	=5.6.0
MapServer	=5.6.1
MapServer	=5.6.3
MapServer	=4.6.0
MapServer	=4.6.0-rc1
MapServer	<=6.0.0
MapServer	=5.0.0-rc2
MapServer	=5.0.0
MapServer	=4.4.0
MapServer	=4.4.0-beta3

Remedy

http://lists.osgeo.org/pipermail/mapserver-users/2011-July/069430.html

Remedy

http://trac.osgeo.org/mapserver/ticket/3939

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-2975?
CVE-2011-2975 has a severity that may lead to application crash or denial of service.
How do I fix CVE-2011-2975?
To fix CVE-2011-2975, you should upgrade to MapServer version 6.0.1 or later.
Which versions of MapServer are affected by CVE-2011-2975?
CVE-2011-2975 affects MapServer versions 4.10.7 and lower, including multiple beta and release candidates prior to 6.0.1.
What type of vulnerability is CVE-2011-2975?
CVE-2011-2975 is a double free vulnerability that could be exploited by remote attackers.
What impact could an exploit of CVE-2011-2975 have?
Exploitation of CVE-2011-2975 could lead to application crashes and potentially other unspecified impacts.

agent/references
agent/first-publish-date
agent/remedy
agent/type
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/severity
agent/author
agent/description
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/umn
canonical/mapserver
version/mapserver/5.6.4
version/mapserver/6.0.0-rc2
version/mapserver/6.0.0-beta3
version/mapserver/6.0.0-beta5
version/mapserver/6.0.0-rc1
version/mapserver/6.0.0-beta1
version/mapserver/5.2.2
version/mapserver/5.6.5
version/mapserver/5.6.7
version/mapserver/6.0.0-beta7
version/mapserver/6.0.0-beta6
version/mapserver/4.10.7
version/mapserver/5.6.6
version/mapserver/6.0.0-beta4
version/mapserver/5.2.3
version/mapserver/6.0.0-beta2
vendor/osgeo
version/mapserver/4.2.0-beta1
version/mapserver/4.4.0-beta1
version/mapserver/4.4.0-beta2
version/mapserver/4.6.0-beta1
version/mapserver/4.6.0-beta2
version/mapserver/4.6.0-beta3
version/mapserver/4.8.0-beta2
version/mapserver/4.8.0-beta1
version/mapserver/4.8.0-beta3
version/mapserver/4.8.0-rc2
version/mapserver/4.8.0-rc1
version/mapserver/4.10.0
version/mapserver/4.10.0-beta1
version/mapserver/4.10.0-rc1
version/mapserver/4.10.0-beta3
version/mapserver/4.10.0-beta2
version/mapserver/4.10.4
version/mapserver/4.10.2
version/mapserver/4.10.1
version/mapserver/4.10.3
version/mapserver/4.10.5
version/mapserver/5.0.0-beta5
version/mapserver/5.0.0-beta6
version/mapserver/5.0.0-beta3
version/mapserver/5.0.0-beta4
version/mapserver/5.0.0-beta1
version/mapserver/5.0.0-beta2
version/mapserver/5.0.0-rc1
version/mapserver/5.2.0
version/mapserver/5.2.0-beta2
version/mapserver/5.2.0-beta1
version/mapserver/5.2.0-beta3
version/mapserver/5.2.0-beta4
version/mapserver/5.2.0-rc1
version/mapserver/5.2.1
version/mapserver/5.4.0
version/mapserver/5.4.0-beta1
version/mapserver/5.4.0-beta2
version/mapserver/5.4.0-beta4
version/mapserver/5.4.0-beta3
version/mapserver/5.4.0-rc2
version/mapserver/5.4.0-rc1
version/mapserver/5.4.2
version/mapserver/5.4.1
version/mapserver/5.6.0
version/mapserver/5.6.1
version/mapserver/5.6.3
version/mapserver/4.6.0
version/mapserver/4.6.0-rc1
version/mapserver/6.0.0
version/mapserver/5.0.0-rc2
version/mapserver/5.0.0
version/mapserver/4.4.0
version/mapserver/4.4.0-beta3

CVE-2011-2975: Double Free

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-2975?

How do I fix CVE-2011-2975?

Which versions of MapServer are affected by CVE-2011-2975?

What type of vulnerability is CVE-2011-2975?

What impact could an exploit of CVE-2011-2975 have?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2011-2975?

How do I fix CVE-2011-2975?

Which versions of MapServer are affected by CVE-2011-2975?

What type of vulnerability is CVE-2011-2975?

What impact could an exploit of CVE-2011-2975 have?