Security update for freexl SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:0569-1 Final 1 1 2018-03-01T08:28:24Z current 2018-03-01T08:28:24Z 2018-03-01T08:28:24Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for freexl This update for freexl fixes the following issues: freexl was updated to version 1.0.5: * No changelog provided by upstream * Various heapoverflows in 1.0.4 have been fixed: * CVE-2018-7439: heap-buffer-overflow in freexl.c:3912 read_mini_biff_next_record (boo#1082774) * CVE-2018-7438: heap-buffer-overflow in freexl.c:383 parse_unicode_string (boo#1082775) * CVE-2018-7437: heap-buffer-overflow in freexl.c:1866 parse_SST(boo#1082776) * CVE-2018-7436: heap-buffer-overflow in freexl.c:1805 parse_SST parse_SST (boo#1082777) * CVE-2018-7435: heap-buffer-overflow in freexl::destroy_cell (boo#1082778) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2018-217 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F/#ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F E-Mail link for openSUSE-SU-2018:0569-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1082774 SUSE Bug 1082774 https://bugzilla.suse.com/1082775 SUSE Bug 1082775 https://bugzilla.suse.com/1082776 SUSE Bug 1082776 https://bugzilla.suse.com/1082777 SUSE Bug 1082777 https://bugzilla.suse.com/1082778 SUSE Bug 1082778 https://www.suse.com/security/cve/CVE-2018-7435/ SUSE CVE CVE-2018-7435 page https://www.suse.com/security/cve/CVE-2018-7436/ SUSE CVE CVE-2018-7436 page https://www.suse.com/security/cve/CVE-2018-7437/ SUSE CVE CVE-2018-7437 page https://www.suse.com/security/cve/CVE-2018-7438/ SUSE CVE CVE-2018-7438 page https://www.suse.com/security/cve/CVE-2018-7439/ SUSE CVE CVE-2018-7439 page SUSE Package Hub 12 freexl-devel-1.0.5-8.1 libfreexl1-1.0.5-8.1 freexl-devel-1.0.5-8.1 as a component of SUSE Package Hub 12 libfreexl1-1.0.5-8.1 as a component of SUSE Package Hub 12 An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in the freexl::destroy_cell function. CVE-2018-7435 SUSE Package Hub 12:freexl-devel-1.0.5-8.1 SUSE Package Hub 12:libfreexl1-1.0.5-8.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F/#ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F https://www.suse.com/security/cve/CVE-2018-7435.html CVE-2018-7435 https://bugzilla.suse.com/1082778 SUSE Bug 1082778 An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parse_SST function. CVE-2018-7436 SUSE Package Hub 12:freexl-devel-1.0.5-8.1 SUSE Package Hub 12:libfreexl1-1.0.5-8.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F/#ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F https://www.suse.com/security/cve/CVE-2018-7436.html CVE-2018-7436 https://bugzilla.suse.com/1082777 SUSE Bug 1082777 An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a memcpy call of the parse_SST function. CVE-2018-7437 SUSE Package Hub 12:freexl-devel-1.0.5-8.1 SUSE Package Hub 12:libfreexl1-1.0.5-8.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F/#ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F https://www.suse.com/security/cve/CVE-2018-7437.html CVE-2018-7437 https://bugzilla.suse.com/1082776 SUSE Bug 1082776 An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in the parse_unicode_string function. CVE-2018-7438 SUSE Package Hub 12:freexl-devel-1.0.5-8.1 SUSE Package Hub 12:libfreexl1-1.0.5-8.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F/#ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F https://www.suse.com/security/cve/CVE-2018-7438.html CVE-2018-7438 https://bugzilla.suse.com/1082775 SUSE Bug 1082775 An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in the function read_mini_biff_next_record. CVE-2018-7439 SUSE Package Hub 12:freexl-devel-1.0.5-8.1 SUSE Package Hub 12:libfreexl1-1.0.5-8.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F/#ITMXPOUUKGX36CVA3DDP2X6VCTFASB4F https://www.suse.com/security/cve/CVE-2018-7439.html CVE-2018-7439 https://bugzilla.suse.com/1082774 SUSE Bug 1082774