The read_MSAT_body function in ole.c in libxls 1.4.0 has an invalid free that allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, because of inconsistent memory management (new versus free) in ole2_read_header in ole.c.
References
Link | Resource |
---|---|
https://github.com/evanmiller/libxls/issues/35 | Exploit Third Party Advisory |
https://security.gentoo.org/glsa/202003-64 |
Configurations
Information
Published : 2018-12-25 09:29
Updated : 2020-03-30 10:15
NVD link : CVE-2018-20452
Mitre link : CVE-2018-20452
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
libxls_project
- libxls