Note:
This project will be discontinued after December 13, 2021. [more]
2018-12-25
The read_MSAT_body function in ole.c in libxls 1.4.0 has an invalid free that allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, because of inconsistent memory management (new versus free) in ole2_read_header in ole.c.
Products | Libxls |
Type | Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) |
First patch | - None (likely due to unavailable code) |
Links |
• https://github.com/evanmiller/libxls/issues/35
• https://security.gentoo.org/glsa/202003-64 |