Description
The read_MSAT function in ole.c in libxls 1.4.0 has a double free that allows attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2017-2897.
Published: 2018-12-25
Score: 6.5 Medium
EPSS: 1.1% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2018-13005 The read_MSAT function in ole.c in libxls 1.4.0 has a double free that allows attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2017-2897.
History

No history.

Subscriptions

Libxls Project Libxls
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-05T11:58:19.160Z

Reserved: 2018-12-25T00:00:00.000Z

Link: CVE-2018-20450

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-12-25T17:29:00.250

Modified: 2026-06-17T01:52:51.950

Link: CVE-2018-20450

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses