Candidate: CVE-2009-1364
PublicDate: 2009-05-01 17:30:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1364
 https://ubuntu.com/security/notices/USN-769-1
Description:
 Use-after-free vulnerability in the embedded GD library in libwmf 0.2.8.4
 allows context-dependent attackers to cause a denial of service
 (application crash) or possibly execute arbitrary code via a crafted WMF
 file.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: low
Discovered-by: Tavis Ormandy
Assigned-to: 
CVSS: 

Patches_libwmf:
upstream_libwmf: released (0.2.8.4-6.1)
dapper_libwmf: released (0.2.8.3-3.1ubuntu0.2)
hardy_libwmf: released (0.2.8.4-6ubuntu0.8.04.1)
intrepid_libwmf: released (0.2.8.4-6ubuntu0.8.10.1)
jaunty_libwmf: released (0.2.8.4-6ubuntu1.1)
devel_libwmf: not-affected (0.2.8.4-6.1ubuntu1)