High severity8.8NVD Advisory· Published Feb 23, 2018· Updated Jun 17, 2026
CVE-2018-7438
CVE-2018-7438
Description
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in the parse_unicode_string function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- osv-coords2 versionspkg:rpm/opensuse/freexl&distro=openSUSE%20Tumbleweedpkg:rpm/suse/freexl&distro=SUSE%20Package%20Hub%2012
< 1.0.6-1.3+ 1 more
- (no CPE)range: < 1.0.6-1.3
- (no CPE)range: < 1.0.5-8.1
Patches
Vulnerability mechanics
References
5- bugzilla.redhat.com/show_bug.cginvdExploitIssue TrackingThird Party Advisory
- lists.debian.org/debian-lts-announce/2018/03/msg00000.htmlnvdMailing ListThird Party Advisory
- www.debian.org/security/2018/dsa-4129nvdThird Party Advisory
- groups.google.com/forum/nvd
- security.gentoo.org/glsa/202007-44nvd
News mentions
0No linked articles in our index yet.