openSUSE-SU-2022:0142-1

Опубликовано: 21 мая 2022

Источник: suse-cvrf

Описание

Security update for libxls

This update for libxls fixes the following issues:

CVE-2021-27836: Fixed possible NULL pointer dereference via crafted XLS (boo#1192323)

Список пакетов

SUSE Package Hub 15 SP3

libxls-devel-1.6.2-bp153.2.6.1

libxls-tools-1.6.2-bp153.2.6.1

libxlsreader8-1.6.2-bp153.2.6.1

openSUSE Leap 15.3

libxls-devel-1.6.2-bp153.2.6.1

libxls-tools-1.6.2-bp153.2.6.1

libxlsreader8-1.6.2-bp153.2.6.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/TECGPMBMRF6XCLE3FXG3LMK4ZGTK275U/
E-Mail link for openSUSE-SU-2022:0142-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1192323
SUSE Bug 1192323
https://www.suse.com/security/cve/CVE-2021-27836/
SUSE CVE CVE-2021-27836 page

Описание

An issue was discoverered in in function xls_getWorkSheet in xls.c in libxls 1.6.2, allows attackers to cause a denial of service, via a crafted XLS file.

Затронутые продукты

SUSE Package Hub 15 SP3:libxls-devel-1.6.2-bp153.2.6.1

SUSE Package Hub 15 SP3:libxls-tools-1.6.2-bp153.2.6.1

SUSE Package Hub 15 SP3:libxlsreader8-1.6.2-bp153.2.6.1

openSUSE Leap 15.3:libxls-devel-1.6.2-bp153.2.6.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-27836.html
CVE-2021-27836
https://bugzilla.suse.com/1192323
SUSE Bug 1192323

openSUSE-SU-2022:0142-1

Описание

Список пакетов

SUSE Package Hub 15 SP3

openSUSE Leap 15.3

Ссылки

Уязвимость: CVE-2021-27836

Описание

Затронутые продукты

Ссылки