1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
|
PublicDate: 2008-02-11
Candidate: CVE-2008-0668
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0668
http://www.ubuntu.com/usn/usn-604-1
Description:
The excel_read_HLINK function in plugins/excel/ms-excel-read.c in Gnome
Office Gnumeric before 1.8.1 allows user-assisted remote attackers to
execute arbitrary code via a crafted XLS file containing XLS HLINK opcodes,
possibly because of an integer signedness error that leads to an integer
overflow. NOTE: some of these details are obtained from third party
information.
Ubuntu-Description:
Notes:
Bugs:
https://bugs.launchpad.net/bugs/198662
Priority: medium
Assigned-to:
Patches_gnumeric:
vendor: http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:056
upstream_gnumeric: not-affected (1.8.1)
dapper_gnumeric: released (1.6.3-0ubuntu4.1)
edgy_gnumeric: released (1.7.0-1ubuntu4.1)
feisty_gnumeric: released (1.7.8-0ubuntu1.1)
gutsy_gnumeric: released (1.7.11-1ubuntu3.1)
devel_gnumeric: not-affected
|