* SECURITY UPDATE: Fix multiple vulnerabilities (LP: #1437087):
- CVE 2015-2753: FreeXL before 1.0.0i allows remote attackers to cause a
denial of service (stack corruption) or possibly execute arbitrary code
via a crafted sector in a workbook.
- CVE 2015-2754: FreeXL before 1.0.0i allows remote attackers to cause a
denial of service (stack corruption) and possibly execute arbitrary code
via a crafted workbook, related to a "premature EOF."
-- Johan Van de Wauw <email address hidden> Fri, 03 Apr 2015 21:55:42 +0200
This bug was fixed in the package freexl - 1.0.0h- 1~exp1ubuntu1
--------------- 1~exp1ubuntu1) vivid; urgency=high
freexl (1.0.0h-
* SECURITY UPDATE: Fix multiple vulnerabilities (LP: #1437087):
- CVE 2015-2753: FreeXL before 1.0.0i allows remote attackers to cause a
denial of service (stack corruption) or possibly execute arbitrary code
via a crafted sector in a workbook.
- CVE 2015-2754: FreeXL before 1.0.0i allows remote attackers to cause a
denial of service (stack corruption) and possibly execute arbitrary code
via a crafted workbook, related to a "premature EOF."
-- Johan Van de Wauw <email address hidden> Fri, 03 Apr 2015 21:55:42 +0200