FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

freexl -- multiple vulnerabilities

Affected packages
freexl < 1.0.1

Details

VuXML ID ac98d090-45cc-11e5-adde-14dae9d210b8
Discovery 2015-03-24
Entry 2015-08-18

Jodie Cunningham reports:

#1: A flaw was found in the way FreeXL reads sectors from the input file. A specially crafted file could possibly result in stack corruption near freexl.c:3752.

#2: A flaw was found in the function allocate_cells(). A specially crafted file with invalid workbook dimensions could possibly result in stack corruption near freexl.c:1074

#3: A flaw was found in the way FreeXL handles a premature EOF. A specially crafted input file could possibly result in stack corruption near freexl.c:1131

#4: FreeXL 1.0.0g did not properly check requests for workbook memory allocation. A specially crafted input file could cause a Denial of Service, or possibly write onto the stack.

References

CVE Name CVE-2015-2776
URL http://www.openwall.com/lists/oss-security/2015/03/25/1