Debian Wordnet vulnerabilities

CVE-2008-2149 [HIGH] CVE-2008-2149: wordnet - Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.... Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end. Scope: local bookworm: resolved (fixed in 1:3.0-10) bullseye: resolved (

CVE-2008-3908 [CRITICAL] CVE-2008-3908: wordnet - Multiple buffer overflows in Princeton WordNet (wn) 3.0 allow context-dependent ... Multiple buffer overflows in Princeton WordNet (wn) 3.0 allow context-dependent attackers to execute arbitrary code via (1) a long argument on the command line; a long (2) WNSEARCHDIR, (3) WNHOME, or (4) WNDBVERSION environment variable; or (5) a user-supplied dictionary (aka data file). NOTE: since WordNet itself does not run with special privileges, this issue o