CVE-2015-2776
CVE-2015-2776
The parse_SST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (memory consumption) via a crafted shared strings table in a workbook.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://security.gentoo.org/glsa/201606-15https://www.gaia-gis.it/fossil/freexl/fdiff?v1=2e167b337481dda3&v2=61618ce51a9b0c15&sbs=1http://www.debian.org/security/2015/dsa-3208http://www.openwall.com/lists/oss-security/2015/03/25/1http://www.openwall.com/lists/oss-security/2015/03/27/13http://www.openwall.com/lists/oss-security/2015/03/27/5http://www.securityfocus.com/bid/73330