Candidate: CVE-2011-2975
PublicDate: 2011-08-01 20:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2975
Description:
 Double free vulnerability in the msAddImageSymbol function in mapsymbol.c
 in MapServer before 6.0.1 might allow remote attackers to cause a denial of
 service (application crash) or have unspecified other impact via crafted
 mapfile data.
Ubuntu-Description:
Notes:
 mdeslaur> seems to only affect 6.x
Bugs:
 http://trac.osgeo.org/mapserver/ticket/3939
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_mapserver:
 upstream: http://trac.osgeo.org/mapserver/changeset/11861
upstream_mapserver: released (6.0.1)
hardy_mapserver: ignored (reached end-of-life)
lucid_mapserver: not-affected (5.6.1-1ubuntu1.2)
maverick_mapserver: not-affected (5.6.5-1ubuntu0.1)
natty_mapserver: not-affected (5.6.5-2ubuntu0.1)
devel_mapserver: not-affected (5.6.6-1.1)