CVE-2015-0848: Buffer Overflow
First published: Tue Jun 02 2015(Updated: )
A heap buffer overflow flaw was found in the way the libwmf library processed WMF files containing BMP images. A specially crafted WMF file could cause an application using libwmf to crash or, possibly, execute arbitrary code. Original report: <a href="http://seclists.org/oss-sec/2015/q2/597">http://seclists.org/oss-sec/2015/q2/597</a>
Credit: security@debian.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/libwmf | 0.2.8.4-17 0.2.12-5.1 0.2.13-1.1 | |
| libwmf | =0.2.8.4 | |
| Red Hat Fedora | =21 | |
| openSUSE | =13.1 | |
| openSUSE | =13.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://seclists.org/oss-sec/2015/q2/597
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1227244
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1033697&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1033697&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1034253&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1034253&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1227243#c5
- https://access.redhat.com/security/cve/CVE-2015-4588
- http://www.openwall.com/lists/oss-security/2015/06/16/4
- http://www.openwall.com/lists/oss-security/2015/06/17/3
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784192
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784205
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1227243#c10
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=784205;att=1;filename=fuzz1.patch;msg=5
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1042306&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1042306&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1042307&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1042307&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1052931&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1052931&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1227243#c15
- https://access.redhat.com/security/cve/CVE-2015-4696
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1227243#c17
- http://dl.fedoraproject.org/pub/fedora/linux/updates/21/SRPMS/l/libwmf-0.2.8.4-45.fc21.src.rpm
- http://dl.fedoraproject.org/pub/fedora/linux/updates/22/SRPMS/l/libwmf-0.2.8.4-45.fc22.src.rpm
- https://dl.fedoraproject.org/pub/fedora/linux/development/rawhide/source/SRPMS/l/libwmf-0.2.8.4-45.fc23.src.rpm
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1272993
- https://rhn.redhat.com/errata/RHSA-2015-1917.html
- https://bugzilla.redhat.com/show_bug.cgi?id=1227243
- https://security-tracker.debian.org/tracker/CVE-2015-0848
- http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160668.html
- http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168507.html
- http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165547.html
- http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html
- http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html
- http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html
- http://rhn.redhat.com/errata/RHSA-2015-1917.html
- http://www.debian.org/security/2015/dsa-3302
- http://www.openwall.com/lists/oss-security/2015/06/01/2
- http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
- http://www.securityfocus.com/bid/74923
- http://www.securitytracker.com/id/1032771
- http://www.ubuntu.com/usn/USN-2670-1
- https://security.gentoo.org/glsa/201602-03
Frequently Asked Questions
What is the severity of CVE-2015-0848?
The severity of CVE-2015-0848 is considered high due to the potential for remote code execution.
How do I fix CVE-2015-0848?
To mitigate CVE-2015-0848, upgrade to a version of libwmf that is not affected, such as 0.2.8.4-18 or newer.
What applications are affected by CVE-2015-0848?
Applications using vulnerable versions of the libwmf library to process WMF files containing BMP images are affected by CVE-2015-0848.
Can CVE-2015-0848 be exploited remotely?
Yes, CVE-2015-0848 can be exploited remotely if a user opens a specially crafted WMF file.
Is CVE-2015-0848 specific to any operating system?
CVE-2015-0848 affects multiple operating systems that utilize the vulnerable versions of the libwmf library, including Debian, Fedora, and openSUSE.
- agent/type
- agent/first-publish-date
- agent/references
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2015-0848
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/weakness
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/debian
- vendor/wvware
- canonical/libwmf
- version/libwmf/0.2.8.4
- vendor/fedoraproject
- canonical/red hat fedora
- version/red hat fedora/21
- vendor/opensuse
- canonical/opensuse
- version/opensuse/13.1
- version/opensuse/13.2