Opened 8 years ago

Closed 8 years ago

Last modified 8 years ago

#10993 closed defect (outdated)

Integer overflow in the wxImage::Create - CVE-2009-2369

Reported by: sharkcz Owned by:
Priority: critical Milestone:
Component: wxGTK Version: 2.8.10
Keywords: security Cc:
Blocked By: Blocking:
Patch: no

Description

Copied from the report:
Integer overflow in the wxImage::Create function in src/common/image.cpp in wxWidgets 2.8.10 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted JPEG file, which triggers a heap-based buffer overflow. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

see http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-2369 for details

Change History (3)

comment:1 Changed 8 years ago by vadz

  • Resolution set to outdated
  • Status changed from new to closed

Already fixed in both trunk 2.8 branch.

comment:2 Changed 8 years ago by sharkcz

Good to know, but can you tell me the svn revision or a date for 2.8?

comment:3 Changed 8 years ago by vadz

r60897 contains all the fixes (spread over r60875, r60876 and this revision itself). Or you can always just use the latest WX_2_8_BRANCH.

Note: See TracTickets for help on using tickets.