Buffer overflow in Osgeo Mapserver

CVE-2010-2539

Buffer overflow in the msTmpFile function in maputil.c in mapserv in MapServer before 4.10.6 and 5.x before 5.6.4 allows local users to cause a denial of service via vectors involving names of temporary files.

Vulnerability class: Buffer Overflow

EPSS: 0.001 (20.0th percentile) — read the EPSS interpretation.

Affected products

Osgeo Mapserver — versions 5.2.0, 5.4.1, 4.8.0
Umn Mapserver — versions 4.0
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

[mapserver-users] 20100709 MapServer 5.6.4 and 4.10.6 released with important security fixes (mailing-list, x_refsource_MLIST, Patch)
mapserver-mstmpfile-bo(60851) (vdb-entry, x_refsource_XF)
secalert@redhat.com (x_refsource_CONFIRM)
41855 (vdb-entry, x_refsource_BID)
secalert@redhat.com (x_refsource_CONFIRM, Patch)
[oss-security] 20100721 Re: CVE id request: mapserver (mailing-list, x_refsource_MLIST)
[oss-security] 20100721 CVE id request: mapserver (mailing-list, x_refsource_MLIST)