blob: 23e95184a140b0afc762f7af9a2e0d5cd849e0aa [file] [log] [blame]
<?xml version="1.0" encoding="utf-8"?>
<glsa id="200612-01">
<title>wv library: Multiple integer overflows</title>
The wv library is vulnerable to multiple integer overflows which could lead
to the execution of arbitrary code.
<product type="ebuild">wv library</product>
<announced>December 07, 2006</announced>
<revised>December 07, 2006: 01</revised>
<package name="app-text/wv" auto="yes" arch="*">
<unaffected range="ge">1.2.3-r1</unaffected>
<vulnerable range="lt">1.2.3-r1</vulnerable>
wv is a library for conversion of MS Word DOC and RTF files.
The wv library fails to do proper arithmetic checks in multiple places,
possibly leading to integer overflows.
<impact type="normal">
An attacker could craft a malicious file that, when handled with the wv
library, could lead to the execution of arbitrary code with the
permissions of the user running the application.
There is no known workaround at this time.
All wv library users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose &quot;&gt;=app-text/wv-1.2.3-r1&quot;</code>
<uri link="">CVE-2006-4513</uri>
<metadata tag="submitter" timestamp="Fri, 24 Nov 2006 19:24:02 +0000">
<metadata tag="bugReady" timestamp="Fri, 24 Nov 2006 19:46:34 +0000">