openSUSE Security Update : freexl (openSUSE-2017-1082)
Low Nessus Plugin ID 103398
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for freexl to version 1.0.4 fixes several issues.
These security issues were fixed :
- CVE-2017-2924: Prevent heap-based buffer overflow in the read_legacy_biff function (bsc#1058433).
- CVE-2017-2923: Prevent heap-based buffer overflow in the read_biff_next_record function (bsc#1058431).
SolutionUpdate the affected freexl packages.