Ubuntu Security Notice 887-1 - Tim Starling discovered that LibThai did not correctly handle long strings. A remote attacker could use specially-formed strings to execute arbitrary code with the user's privileges.
c2cde22a1d635d3264a61a1ceca7edc77ee52a9dca43200055108e7ba6abd6b2
Mandriva Linux Security Advisory 2010-010 - Tim Starling discovered that libthai, a set of Thai language support routines, is vulnerable of integer/heap overflow. This vulnerability could allow an attacker to run arbitrary code by sending a very long string. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct these issues.
9f501abf4e6b9971e8bf2c664853c621af20e4b3a3d1311e0344e489946e14ac
Debian Linux Security Advisory 1971-1 - Tim Starling discovered that libthai, a set of Thai language support routines, is vulnerable of integer/heap overflow. This vulnerability could allow an attacker to run arbitrary code by sending a very long string.
869be9dff67fdf5ca024caf11e473a8f4b996165112443195b7ee9f83bbc1916