Heap-Based Buffer Overflow in Wine Affects Multiple Releases
CVE-2018-12932

9.8CRITICAL

Key Information:

Vendor

Winehq

Status
Wine
Vendor
CVE Published:
28 June 2018

What is CVE-2018-12932?

The PlayEnhMetaFileRecord function in the Wine application, specifically in enhmetafile.c, is susceptible to a heap-based buffer overflow due to improper handling of a large pAlphaBlend->cbBitsSrc value. This flaw can lead to a denial of service and may allow attackers to exploit the system in ways that cause unspecified impacts.

References

https://source.winehq.org/git/wine.git/commit/b6da3547d89...
x_refsource_MISC
https://source.winehq.org/git/wine.git/commit/8d2676fd14f...
x_refsource_MISC
https://bugs.launchpad.net/ubuntu/+source/wine/+bug/1764719
x_refsource_MISC

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.