Описание
Security update for libwpd
This update for libwpd fixes the following issues:
Security issue fixed:
- CVE-2018-19208: Fixed illegal address access inside libwpd at function WP6ContentListener:defineTable (bsc#1115713).
Список пакетов
SUSE Linux Enterprise Desktop 12 SP4
libwpd-0_10-10-0.10.2-2.7.1
SUSE Linux Enterprise Software Development Kit 12 SP4
libwpd-0_10-10-0.10.2-2.7.1
libwpd-devel-0.10.2-2.7.1
libwpd-devel-doc-0.10.2-2.7.1
SUSE Linux Enterprise Workstation Extension 12 SP4
libwpd-0_10-10-0.10.2-2.7.1
Ссылки
- Link for SUSE-SU-2018:3812-2
- E-Mail link for SUSE-SU-2018:3812-2
- SUSE Security Ratings
- SUSE Bug 1115713
- SUSE CVE CVE-2018-19208 page
Описание
In libwpd 0.10.2, there is a NULL pointer dereference in the function WP6ContentListener::defineTable in WP6ContentListener.cpp that will lead to a denial of service attack. This is related to WPXTable.h.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP4:libwpd-0_10-10-0.10.2-2.7.1
SUSE Linux Enterprise Software Development Kit 12 SP4:libwpd-0_10-10-0.10.2-2.7.1
SUSE Linux Enterprise Software Development Kit 12 SP4:libwpd-devel-0.10.2-2.7.1
SUSE Linux Enterprise Software Development Kit 12 SP4:libwpd-devel-doc-0.10.2-2.7.1
Ссылки
- CVE-2018-19208
- SUSE Bug 1115713