Overview

File _patchinfo of Package patchinfo.7280

<patchinfo incident="7280">
  <issue id="1058433" tracker="bnc">VUL-0: CVE-2017-2924: freexl: Heap-based buffer overflow in the read_legacy_biff function</issue>
  <issue id="1058431" tracker="bnc">VUL-0: CVE-2017-2923: freexl: Heap-based buffer overflow in the read_biff_next_record function</issue>
  <issue id="2017-2923" tracker="cve" />
  <issue id="2017-2924" tracker="cve" />
  <category>security</category>
  <rating>low</rating>
  <packager>pluskalm</packager>
  <description>This update for freexl to version 1.0.4 fixes several issues.

These security issues were fixed:

- CVE-2017-2924: Prevent heap-based buffer overflow in the read_legacy_biff function (bsc#1058433).
- CVE-2017-2923: Prevent heap-based buffer overflow in the read_biff_next_record function (bsc#1058431).
</description>
  <summary>Security update for freexl</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places