Five heap-buffer-overflow vulnerabilities of FreeXL 1.0.4
151 views
Skip to first unread message
leon....@gmail.com
unread,
Feb 22, 2018, 3:56:46 AM2/22/18
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to SpatiaLite Users
I have found several heap-buffer-overflow vulnerabilities of FreeXL 1.0.4, these vulnerabilities may be used to execute arbitrary code. I post them in redhat bugzilla
all of them have an attachment of POC file, and can be reproduced with command: ./test_xl $POC
a.fu...@lqt.it
unread,
Feb 22, 2018, 10:02:48 AM2/22/18
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to spatiali...@googlegroups.com
On Thu, 22 Feb 2018 00:56:46 -0800 (PST), leon....@gmail.com wrote:
> I have found several heap-buffer-overflow vulnerabilities of FreeXL
> 1.0.4, these vulnerabilities may be used to execute arbitrary code. I
> post them in redhat bugzilla
>
>
> all of them have an attachment of POC file, and can be reproduced
> with
> command: ./test_xl $POC
>
Hi Leon,
all five vulnerabilities are now fixed and the patched
code is available from the Fossil repository, and I'm
going to announce the release of version 1.0.5
thank a lot for identifying and reporting these critical
issues.