CVE-2017-12110

Опубликовано: 20 нояб. 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 6.8

CVSS3: 8.8

Описание

An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	1.0.0-2
cosmic	not-affected	1.0.0-2
devel	not-affected	1.0.0-2
disco	not-affected	1.0.0-2
eoan	not-affected	1.0.0-2
esm-apps/bionic	not-affected	1.0.0-2
esm-apps/focal	not-affected	1.0.0-2
esm-apps/jammy	not-affected	1.0.0-2
esm-apps/noble	not-affected	1.0.0-2

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2017-12110

CVSS3: 8.8

nvd

около 8 лет назад

An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.

CVE-2017-12110

CVSS3: 8.8

debian

около 8 лет назад

An exploitable integer overflow vulnerability exists in the xls_append ...

GHSA-49pr-jwfm-r8m6

CVSS3: 7.8

github

больше 3 лет назад

An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.

6.8 Medium

CVSS2

8.8 High

CVSS3

CVE-2017-12110

Описание

Пакет r-cran-readxl

Ссылки на источники

Связанные уязвимости