CVE-2009-1364 (NVD)

2009-05-01

Use-after-free vulnerability in the embedded GD library in libwmf 0.2.8.4 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted WMF file.

Products Libwmf, Opensuse
Type ? (NVD-CWE-Other)
First patch - None (likely due to unavailable code)
Links https://bugzilla.redhat.com/show_bug.cgi?id=496864
http://rhn.redhat.com/errata/RHSA-2009-0457.html
http://secunia.com/advisories/35686
http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01266.html