Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 118373

Summary: Wine, including the latest 0.9.5 snapshot, is vulnerable to WMF exploit
Product: Gentoo Security Reporter: Andreas Arens <ari>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Severity: normal    
Priority: High    
Version: unspecified   
Hardware: All   
OS: All   
Package list:
Runtime testing required: ---

Description Andreas Arens 2006-01-09 02:41:45 UTC
Wine is bug2bug compatible to the Windows Meta File API, including the SETABORTPROC code execution feature. That means that applications running under WINE are exploitable the same way as under windows.
Judging the scale and severity of the windows exploit, which even forced Microsoft to release a patch out of the normal cycle, immediate action should be taken.
A fix from Marcus Meissner is already available.
Comment 1 Stefan Cornelius (RETIRED) gentoo-dev 2006-01-09 02:44:13 UTC

*** This bug has been marked as a duplicate of 118101 ***