CVE-2009-2369

Integer overflow in the wxImage::Create function in src/common/image.cpp in wxWidgets 2.8.10 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted JPEG file, which triggers a heap-based buffer overflow.  NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 80%
VendorProductVersion
wxwidgetswxwidgets
2.8.10
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
wxwidgets2.6
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
Fixed 2.6.3.2.2-3ubuntu5
released
jaunty
Fixed 2.6.3.2.2-3ubuntu4.1
released
intrepid
ignored
hardy
ignored
dapper
ignored
wxwidgets2.8
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
ignored
jaunty
ignored
intrepid
ignored
hardy
ignored
dapper
dne
Common Weakness Enumeration
References
http://osvdb.org/55520
http://secunia.com/advisories/35351
http://secunia.com/advisories/35913
http://www.securityfocus.com/bid/35552
http://www.vupen.com/english/advisories/2009/1770
https://exchange.xforce.ibmcloud.com/vulnerabilities/51516
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00693.html
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00712.html
http://osvdb.org/55520
http://secunia.com/advisories/35351
http://secunia.com/advisories/35913
http://www.securityfocus.com/bid/35552
http://www.vupen.com/english/advisories/2009/1770
https://exchange.xforce.ibmcloud.com/vulnerabilities/51516
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00693.html
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00712.html