libgsf
Page content
- Author: voroskoi
- Vulnerable: 1.14.1-3
- Unaffected: 1.14.1-4siwenna1
A vulnerability has been reported in libgsf, which potentially can be exploited by malicious people to compromise an application using the library. The vulnerability is caused due to a boundary error within the “ole_info_read_metabat()” function in gsf/gsf-infile-msole.c. This can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into opening a specially crafted file in an application using the library.
- Bug Tracker URL: http://bugs.frugalware.org/task/1503