CVE-2005-2964

NameCVE-2005-2964
DescriptionStack-based buffer overflow in AbiWord before 2.2.10 allows attackers to execute arbitrary code via the RTF import mechanism.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-894-1
Debian Bugs329839

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
abiword (PTS)jessie3.0.0-8fixed
stretch3.0.2-2+deb9u2fixed
buster3.0.2-8fixed
bullseye3.0.4~dfsg-3fixed
bookworm3.0.5~dfsg-3.2fixed
sid, trixie3.0.6~dfsg-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
abiwordsourcewoody1.0.2+cvs.2002.06.05-1woody3DSA-894-1
abiwordsourcesarge2.2.7-3sarge2DSA-894-1
abiwordsource(unstable)2.2.10-1medium329839

Search for package or bug name: Reporting problems