CVE-2015-5097 found in wine 2.15_3

Questions about Wine on macOS.
Locked
Ralf_H
Level 2
Level 2
Posts: 22
Joined: Wed Oct 26, 2016 4:43 am

CVE-2015-5097 found in wine 2.15_3

Post by Ralf_H »

My anti-Virus-program found an infection with CVE-2015-5097 in wine; here the path:

/private/tmp/wine--gd-20170818-27703-1pczxae/libgd-2.2.4/tests/tiff/tiff_invalid_read_2.tiff

Regards
Ralf

MacBook Pro
MacOSX 10.11.6
Top
Ralf_H
Level 2
Level 2
Posts: 22
Joined: Wed Oct 26, 2016 4:43 am

Re: CVE-2015-5097 found in wine 2.15_3

Post by Ralf_H »

The virus is also in the 2.16_3.
Top
Ralf_H
Level 2
Level 2
Posts: 22
Joined: Wed Oct 26, 2016 4:43 am

Virus still there, was : CVE-2015-5097 found in wine 2.15_3

Post by Ralf_H »

Now also in 2.17_3.
Probably the Wine- packagers think it's not dangerous, but I don't understand why you spread malware / virus:
https://nvd.nist.gov/vuln/detail/CVE-2015-5097
Ralf
Top
User avatar
dimesio
Moderator
Moderator
Posts: 13204
Joined: Tue Mar 25, 2008 10:30 pm

Re: CVE-2015-5097 found in wine 2.15_3

Post by dimesio »

Ralf_H wrote: /private/tmp/wine--gd-20170818-27703-1pczxae/libgd-2.2.4/tests/tiff/tiff_invalid_read_2.tiff
That file is not part of Wine, it is part of libgd, and is not included in the WineHQ packages. You seem to be using some third party version of Wine; report the problem to whomever you got it from.
Top
Ralf_H
Level 2
Level 2
Posts: 22
Joined: Wed Oct 26, 2016 4:43 am

Re: CVE-2015-5097 found in wine 2.15_3

Post by Ralf_H »

O.K., sorry. I install wine via homebrew, don't know where it's from and what is all included there.
Regards
Ralf
Top
Locked

Return to “macOS”