openSUSE 10 Security Update : libwmf (libwmf-1840)
High Nessus Plugin ID 27336
SynopsisThe remote openSUSE host is missing a security update.
DescriptionA heap overflow could be triggered by specially crafted WMF (Windows Meta Files) in the libwmf library. This problem could be exploited to execute code, by a remote attacker providing a file with embedded WMF data to an application understanding this (like OpenOffice_org, abiword, gimp).
This issue is tracked by the Mitre CVE ID CVE-2006-3376.
SolutionUpdate the affected libwmf packages.