CVE-2015-2776

Опубликовано: 31 мар. 2015

Источник: debian

Описание

The parse_SST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (memory consumption) via a crafted shared strings table in a workbook.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
freexl	fixed	1.0.1-1~exp1	experimental	package
freexl	fixed	1.0.0g-1+deb8u1		package

Примечания

Reproducer: https://www.dropbox.com/s/gh61gzaf8jj30hj/freexl_6889d18b?dl=0

Связанные уязвимости

CVE-2015-2776

ubuntu

почти 11 лет назад

The parse_SST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (memory consumption) via a crafted shared strings table in a workbook.

CVE-2015-2776

redhat

почти 11 лет назад

The parse_SST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (memory consumption) via a crafted shared strings table in a workbook.

CVE-2015-2776

nvd

почти 11 лет назад

The parse_SST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (memory consumption) via a crafted shared strings table in a workbook.

GHSA-vh6v-4rj2-6qcq

github

больше 3 лет назад

The parse_SST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (memory consumption) via a crafted shared strings table in a workbook.