Package freexl updated to version 1.0.0i-alt1 for branch sisyphus in task 141641.

Published: 2015-03-31
Modified: 2024-11-21

CVE-2015-2753

FreeXL before 1.0.0i allows remote attackers to cause a denial of service (stack corruption) or possibly execute arbitrary code via a crafted sector in a workbook.

Severity: MEDIUM (6.8)

References:

DSA-3208
DSA-3208
[oss-security] 20150324 CVE Request: Multiple vulnerabilities in freexl 1.0.0g
[oss-security] 20150324 CVE Request: Multiple vulnerabilities in freexl 1.0.0g
[oss-security] 20150327 Re: CVE Request: Multiple vulnerabilities in freexl 1.0.0g
[oss-security] 20150327 Re: CVE Request: Multiple vulnerabilities in freexl 1.0.0g
73330
73330
GLSA-201606-15
GLSA-201606-15
https://www.gaia-gis.it/fossil/freexl/fdiff?v1=2e167b337481dda3&v2=61618ce51a9b0c15&sbs=1
https://www.gaia-gis.it/fossil/freexl/fdiff?v1=2e167b337481dda3&v2=61618ce51a9b0c15&sbs=1

Published: 2015-03-31
Modified: 2024-11-21

CVE-2015-2754

FreeXL before 1.0.0i allows remote attackers to cause a denial of service (stack corruption) and possibly execute arbitrary code via a crafted workbook, related to a "premature EOF."

Severity: MEDIUM (6.8)

References:

DSA-3208
DSA-3208
[oss-security] 20150324 CVE Request: Multiple vulnerabilities in freexl 1.0.0g
[oss-security] 20150324 CVE Request: Multiple vulnerabilities in freexl 1.0.0g
[oss-security] 20150327 Re: CVE Request: Multiple vulnerabilities in freexl 1.0.0g
[oss-security] 20150327 Re: CVE Request: Multiple vulnerabilities in freexl 1.0.0g
73330
73330
GLSA-201606-15
GLSA-201606-15
https://www.gaia-gis.it/fossil/freexl/fdiff?v1=2e167b337481dda3&v2=61618ce51a9b0c15&sbs=1
https://www.gaia-gis.it/fossil/freexl/fdiff?v1=2e167b337481dda3&v2=61618ce51a9b0c15&sbs=1

Published: 2015-03-31
Modified: 2024-11-21

CVE-2015-2776

The parse_SST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (memory consumption) via a crafted shared strings table in a workbook.

Severity: MEDIUM (4.3)

References:

DSA-3208
DSA-3208
[oss-security] 20150324 CVE Request: Multiple vulnerabilities in freexl 1.0.0g
[oss-security] 20150324 CVE Request: Multiple vulnerabilities in freexl 1.0.0g
[oss-security] 20150327 Re: CVE Request: Multiple vulnerabilities in freexl 1.0.0g
[oss-security] 20150327 Re: CVE Request: Multiple vulnerabilities in freexl 1.0.0g
[oss-security] 20150327 Re: CVE Request: Multiple vulnerabilities in freexl 1.0.0g
[oss-security] 20150327 Re: CVE Request: Multiple vulnerabilities in freexl 1.0.0g
73330
73330
GLSA-201606-15
GLSA-201606-15
https://www.gaia-gis.it/fossil/freexl/fdiff?v1=2e167b337481dda3&v2=61618ce51a9b0c15&sbs=1
https://www.gaia-gis.it/fossil/freexl/fdiff?v1=2e167b337481dda3&v2=61618ce51a9b0c15&sbs=1

Version: 2.1.0

Package freexl update in sisyphus on 2015-03-10

ALT-PU-2015-1268-1

Closed vulnerabilities

CVE-2015-2753

CVE-2015-2754

CVE-2015-2776