openSUSE Security Update : freexl (openSUSE-2017-1082)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This update for freexl to version 1.0.4 fixes several issues.

These security issues were fixed :

- CVE-2017-2924: Prevent heap-based buffer overflow in the
read_legacy_biff function (bsc#1058433).

- CVE-2017-2923: Prevent heap-based buffer overflow in the
read_biff_next_record function (bsc#1058431).

See also :

https://bugzilla.opensuse.org/show_bug.cgi?id=1058431
https://bugzilla.opensuse.org/show_bug.cgi?id=1058433

Solution :

Update the affected freexl packages.

Risk factor :

Low

Family: SuSE Local Security Checks

Nessus Plugin ID: 103398 ()

Bugtraq ID:

CVE ID: CVE-2017-2923
CVE-2017-2924

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now