AZL-37060

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-37060.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-37060

Upstream

CVE-2008-2149

Published

2008-05-12T21:20:00Z

Modified

2026-04-21T04:28:08.176349Z

Summary

CVE-2008-2149 affecting package wordnet for versions less than 3.0-43

Details

Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end.

References

https://nvd.nist.gov/vuln/detail/CVE-2008-2149

Affected packages

Azure Linux:3 / wordnet

Package

Name: wordnet
Purl: pkg:rpm/azure-linux/wordnet

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0-43

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-37060.json"