openSUSE-SU-2017:1899-1

Опубликовано: 19 июл. 2017

Источник: suse-cvrf

Описание

Security update for catdoc

This update for catdoc fixes the following issues:

CVE-2017-11110: Attackers may have used specially crafted files to cause a denial of service through a heap-based buffer under-flow and application crash, or have unspecified other impact (boo#1047877)

Список пакетов

openSUSE Leap 42.2

catdoc-0.95-7.6.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2017-07/msg00076.html
E-Mail link for openSUSE-SU-2017:1899-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

The ole_init function in ole.c in catdoc 0.95 allows remote attackers to cause a denial of service (heap-based buffer underflow and application crash) or possibly have unspecified other impact via a crafted file, i.e., data is written to memory addresses before the beginning of the tmpBuf buffer.

Затронутые продукты

openSUSE Leap 42.2:catdoc-0.95-7.6.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-11110.html
CVE-2017-11110
https://bugzilla.suse.com/1047877
SUSE Bug 1047877

openSUSE-SU-2017:1899-1

Описание

Список пакетов

openSUSE Leap 42.2

Ссылки

Уязвимость: CVE-2017-11110

Описание

Затронутые продукты

Ссылки