libwmf: Multiple vulnerabilities Multiple vulnerabilities have been found in libwmf allowing remote attackers to execute arbitrary code or cause Denial of Service. 2016-02-27 2016-02-27 551144 553818 remote 0.2.8.4-r6 0.2.8.4-r6

libwmf is a library for converting WMF files.

Multiple vulnerabilities have been discovered in libwmf. Please review the CVE identifiers referenced below for details.

A remote attacker could possibly execute arbitrary code with the privileges of the process or cause Denial of Service.

There is no known work around at this time.

All libwmf users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=media-libs/libwmf-0.2.8.4-r6" CVE-2015-0848 CVE-2015-4588 CVE-2015-4695 CVE-2015-4696 BlueKnight b-man