Launchpad.net

CVE 2009-2369

Integer overflow in the wxImage::Create function in src/common/image.cpp in wxWidgets 2.8.10 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted JPEG file, which triggers a heap-based buffer overflow. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Related bugs and status

CVE-2009-2369 (Candidate) is related to these bugs:

Bug #467981: Integer overflow in the wxImage::Create function

Summary				In	Importance	Status
	467981	Integer overflow in the wxImage::Create function		wxwidgets2.6 (Ubuntu)	Undecided	Invalid
	467981	Integer overflow in the wxImage::Create function		wxwidgets2.6 (Ubuntu Jaunty)	Low	Fix Released

Bug #568985: Please update to WxWidgets 2.8.11

Summary				In	Importance	Status
	568985	Please update to WxWidgets 2.8.11		wxwidgets2.8 (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

BID: 35552
OSVDB: 55520
SECUNIA: 35351
VUPEN: ADV-2009-1770
FEDORA: FEDORA-2009-7755
FEDORA: FEDORA-2009-7763
SECUNIA: 35913
XF: wxwidgets-wximagecreat...