Описание
The ole_init function in ole.c in catdoc 0.95 allows remote attackers to cause a denial of service (heap-based buffer underflow and application crash) or possibly have unspecified other impact via a crafted file, i.e., data is written to memory addresses before the beginning of the tmpBuf buffer.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1:0.95-3 |
| esm-apps/xenial | released | 1:0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1build0.16.04.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [0.94.4-1.1+deb8u1build0.14.04.1]] |
| precise/esm | DNE | |
| trusty | released | 0.94.4-1.1+deb8u1build0.14.04.1 |
| trusty/esm | DNE | trusty was released [0.94.4-1.1+deb8u1build0.14.04.1] |
| upstream | released | 1:0.95-3 |
| vivid/ubuntu-core | DNE | |
| xenial | released | 1:0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1build0.16.04.1 |
| yakkety | ignored | end of life |
Показывать по
6.8 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
The ole_init function in ole.c in catdoc 0.95 allows remote attackers to cause a denial of service (heap-based buffer underflow and application crash) or possibly have unspecified other impact via a crafted file, i.e., data is written to memory addresses before the beginning of the tmpBuf buffer.
The ole_init function in ole.c in catdoc 0.95 allows remote attackers ...
The ole_init function in ole.c in catdoc 0.95 allows remote attackers to cause a denial of service (heap-based buffer underflow and application crash) or possibly have unspecified other impact via a crafted file, i.e., data is written to memory addresses before the beginning of the tmpBuf buffer.
6.8 Medium
CVSS2
7.8 High
CVSS3