SUSE Package Hub - openSUSE-2017-1082

Update Info

openSUSE-2017-1082

Security update for freexl

Type: security

Severity: low

Issued: 2017-09-21

Description:

This update for freexl to version 1.0.4 fixes several issues.

These security issues were fixed:

- CVE-2017-2924: Prevent heap-based buffer overflow in the read_legacy_biff function (bsc#1058433).
- CVE-2017-2923: Prevent heap-based buffer overflow in the read_biff_next_record function (bsc#1058431).

References

Packages

freexl-1.0.4-5.1