DEBIAN-CVE-2008-3908

See a problem?
Please try reporting it to the source first.
Source
https://security-tracker.debian.org/tracker/DEBIAN-CVE-2008-3908
Import Source
https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2008-3908.json
JSON Data
https://api.osv.dev/v1/vulns/DEBIAN-CVE-2008-3908
Upstream
Published
2008-09-04T17:41:00Z
Modified
2025-09-25T00:07:01.711512Z
Summary
[none]
Details

Multiple buffer overflows in Princeton WordNet (wn) 3.0 allow context-dependent attackers to execute arbitrary code via (1) a long argument on the command line; a long (2) WNSEARCHDIR, (3) WNHOME, or (4) WNDBVERSION environment variable; or (5) a user-supplied dictionary (aka data file). NOTE: since WordNet itself does not run with special privileges, this issue only crosses privilege boundaries when WordNet is invoked as a third party component.

References

Affected packages

Debian:11 / wordnet

Package

Name
wordnet
Purl
pkg:deb/debian/wordnet?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:3.0-12

Ecosystem specific 

{
    "urgency": "medium"
}

Debian:12 / wordnet

Package

Name
wordnet
Purl
pkg:deb/debian/wordnet?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:3.0-12

Ecosystem specific 

{
    "urgency": "medium"
}

Debian:13 / wordnet

Package

Name
wordnet
Purl
pkg:deb/debian/wordnet?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:3.0-12

Ecosystem specific 

{
    "urgency": "medium"
}

Debian:14 / wordnet

Package

Name
wordnet
Purl
pkg:deb/debian/wordnet?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:3.0-12

Ecosystem specific 

{
    "urgency": "medium"
}