CVE-2009-2369

Name	CVE-2009-2369
Description	Integer overflow in the wxImage::Create function in src/common/image.cpp in wxWidgets 2.8.10 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted JPEG file, which triggers a heap-based buffer overflow. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Source	CVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-1890-1
Debian Bugs	537174, 537175

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
wxwidgets2.6	source	etch	2.6.3.2.1.5+etch1		DSA-1890-1
wxwidgets2.6	source	lenny	2.6.3.2.2-3+lenny1		DSA-1890-1
wxwidgets2.6	source	(unstable)	2.6.3.2.2-3.1	medium		537175
wxwidgets2.8	source	lenny	2.8.7.1-1.1+lenny1		DSA-1890-1
wxwidgets2.8	source	(unstable)	2.8.7.1-2	medium		537174
wxwindows2.4	source	etch	2.4.5.1.1+etch1		DSA-1890-1
wxwindows2.4	source	(unstable)	(unfixed)	medium