ALT-PU-2018-1703-1
Package wine-vanilla updated to version 3.8-alt1 for branch sisyphus in task 206300.
Closed vulnerabilities
Published: 2018-06-28
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2018-12932
PlayEnhMetaFileRecord in enhmetafile.c in Wine 3.7 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact by triggering a large pAlphaBlend->cbBitsSrc value.
Severity: CRITICAL (9.8)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
- https://bugs.launchpad.net/ubuntu/+source/wine/+bug/1764719
- https://bugs.launchpad.net/ubuntu/+source/wine/+bug/1764719
- https://bugs.winehq.org/attachment.cgi?id=61284
- https://bugs.winehq.org/attachment.cgi?id=61284
- https://bugs.winehq.org/show_bug.cgi?id=45105
- https://bugs.winehq.org/show_bug.cgi?id=45105
- https://source.winehq.org/git/wine.git/commit/8d2676fd14f130f9e8f06744743423168bf8d18d
- https://source.winehq.org/git/wine.git/commit/8d2676fd14f130f9e8f06744743423168bf8d18d
- https://source.winehq.org/git/wine.git/commit/b6da3547d8990c3c3affc3a5865aefd2a0946949
- https://source.winehq.org/git/wine.git/commit/b6da3547d8990c3c3affc3a5865aefd2a0946949
Published: 2018-06-28
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2018-12933
PlayEnhMetaFileRecord in enhmetafile.c in Wine 3.7 allows attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact because the attacker controls the pCreatePen->ihPen array index.
Severity: CRITICAL (9.8)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
- https://bugs.launchpad.net/ubuntu/+source/wine/+bug/1764719
- https://bugs.launchpad.net/ubuntu/+source/wine/+bug/1764719
- https://bugs.winehq.org/attachment.cgi?id=61285
- https://bugs.winehq.org/attachment.cgi?id=61285
- https://bugs.winehq.org/show_bug.cgi?id=45106
- https://bugs.winehq.org/show_bug.cgi?id=45106
- https://source.winehq.org/git/wine.git/commit/8d2676fd14f130f9e8f06744743423168bf8d18d
- https://source.winehq.org/git/wine.git/commit/8d2676fd14f130f9e8f06744743423168bf8d18d
- https://source.winehq.org/git/wine.git/commit/b6da3547d8990c3c3affc3a5865aefd2a0946949
- https://source.winehq.org/git/wine.git/commit/b6da3547d8990c3c3affc3a5865aefd2a0946949