Debian Security Advisory DSA 954-1 (wine) Network Vulnerability

Summary

The remote host is missing an update to wine announced via advisory DSA 954-1. H D Moore that discovered that Wine, a free implemention of the Microsoft Windows APIs, inherits a design flaw from the Windows GDI API, which may lead to the execution of code through GDI escape functions in WMF files. The old stable distribution (woody) does not seem to be affected by this problem.

Solution

For the stable distribution (sarge) this problem has been fixed in version 0.0.20050310-1.2. For the unstable distribution (sid) this problem has been fixed in version 0.9.2-1. We recommend that you upgrade your wine packages. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20954-1

Severity

Classification

CVE CVE-2006-0106
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Debian Security Advisory DSA 1083-1 (motor)
Debian Security Advisory DSA 1017-1 (kernel-source-2.6.8)
Debian Security Advisory DSA 047-1 (various kernel packages)
Debian Security Advisory DSA 099-1 (XChat)
Debian Security Advisory DSA 100-1 (gzip)

Take action and discover your vulnerabilities