The wmf_malloc function in api.c in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (application crash) via a crafted wmf file, which triggers a memory allocation failure.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "libwmf0.2-7-dbgsym": "0.2.8.4-12", "libwmf-bin": "0.2.8.4-12", "libwmf0.2-7": "0.2.8.4-12", "libwmf-bin-dbgsym": "0.2.8.4-12", "libwmf-dev": "0.2.8.4-12", "libwmf-doc": "0.2.8.4-12", "libwmf0.2-7-gtk": "0.2.8.4-12", "libwmf0.2-7-gtk-dbgsym": "0.2.8.4-12" } ] }