* SECURITY UPDATE: Fix multiple vulnerabilities allowing denial of service
or possibly execute arbitrary code (LP: #1437087):
- CVE 2015-2753: FreeXL before 1.0.0i allows remote attackers to cause a
denial of service (stack corruption) or possibly execute arbitrary code
via a crafted sector in a workbook.
- CVE 2015-2754: FreeXL before 1.0.0i allows remote attackers to cause a
denial of service (stack corruption) and possibly execute arbitrary code
via a crafted workbook, related to a "premature EOF."
-- Johan Van de Wauw <email address hidden> Fri, 03 Apr 2015 22:47:20 +0200
This bug was fixed in the package freexl - 1.0.0g- 1ubuntu0. 14.10.1
--------------- 1ubuntu0. 14.10.1) utopic-security; urgency=high
freexl (1.0.0g-
* SECURITY UPDATE: Fix multiple vulnerabilities allowing denial of service
or possibly execute arbitrary code (LP: #1437087):
- CVE 2015-2753: FreeXL before 1.0.0i allows remote attackers to cause a
denial of service (stack corruption) or possibly execute arbitrary code
via a crafted sector in a workbook.
- CVE 2015-2754: FreeXL before 1.0.0i allows remote attackers to cause a
denial of service (stack corruption) and possibly execute arbitrary code
via a crafted workbook, related to a "premature EOF."
-- Johan Van de Wauw <email address hidden> Fri, 03 Apr 2015 22:47:20 +0200