Launchpad.net

CVE 2008-3533

Format string vulnerability in the window_error function in yelp-window.c in yelp in Gnome after 2.19.90 and before 2.24 allows remote attackers to execute arbitrary code via format string specifiers in an invalid URI on the command line, as demonstrated by use of yelp within (1) man or (2) ghelp URI handlers in Firefox, Evolution, and unspecified other programs.

Related bugs and status

CVE-2008-3533 (Candidate) is related to these bugs:

Bug #254860: format string vulnerabilty

		In	Importance	Status
254860	format string vulnerabilty	yelp (Ubuntu)	Medium	Fix Released
254860	format string vulnerabilty	Yelp	Undecided	New
254860	format string vulnerabilty	yelp (Ubuntu Gutsy)	Medium	Fix Released
254860	format string vulnerabilty	yelp (Ubuntu Hardy)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://bugzilla.gnome....
CONFIRM: http://bugzilla.gnome....
CONFIRM: https://bugs.launchpad...
MANDRIVA: MDVSA-2008:175
UBUNTU: USN-638-1
BID: 30690
SECUNIA: 31465
SECUNIA: 31620
FEDORA: FEDORA-2008-7293
SECUNIA: 31834
SECUNIA: 32629
SUSE: SUSE-SR:2008:024
VUPEN: ADV-2008-2393
XF: yelp-uri-format-string...