Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2009-0366

The uncompress_buffer function in src/server/simple_wml.cpp in Wesnoth before r33069 allows remote attackers to cause a denial of service via a large compressed WML document.

Related bugs and status

CVE-2009-0366 (Candidate) is related to these bugs:

Bug #335089: Please sync wesnoth 1:1.4.7-4 (universe) from Debian unstable (main)

Summary				In	Importance	Status
	335089	Please sync wesnoth 1:1.4.7-4 (universe) from Debian unstable (main)		wesnoth (Ubuntu)	Medium	Fix Released

Bug #336396: Wesnoth security fixes

		In	Importance	Status
336396	Wesnoth security fixes	wesnoth (Ubuntu)	Undecided	Invalid
336396	Wesnoth security fixes	wesnoth (Ubuntu Gutsy)	Undecided	Fix Released
336396	Wesnoth security fixes	wesnoth (Ubuntu Hardy)	Undecided	Fix Released
336396	Wesnoth security fixes	wesnoth (Ubuntu Jaunty)	Undecided	Invalid
336396	Wesnoth security fixes	wesnoth (Ubuntu Intrepid)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://launchpad.net/b...
CONFIRM: http://launchpad.net/b...
CONFIRM: http://launchpad.net/b...
CONFIRM: http://packages.debian...
CONFIRM: http://packages.debian...
CONFIRM: https://gna.org/bugs/i...
DEBIAN: DSA-1737
BID: 34085
OSVDB: 52672
SECUNIA: 34253
SECUNIA: 34236
CONFIRM: http://svn.gna.org/vie...
CONFIRM: http://svn.gna.org/vie...