Description
Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple
products including (1) wv, (2) abiword, (3) freetype, (4) gimp, (5) libgsf,
and (6) imagemagick allows remote attackers to execute arbitrary code via
the MaxRecordSize header field in a WMF file.
Updated: 2019-01-14 21:39:23 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)