VYPR

rpm package

suse/libwpd&distro=SUSE Linux Enterprise Desktop 12 SP3

pkg:rpm/suse/libwpd&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3

Vulnerabilities (2)

  • CVE-2018-19208Nov 12, 2018
    affected < 0.10.2-2.7.1fixed 0.10.2-2.7.1

    In libwpd 0.10.2, there is a NULL pointer dereference in the function WP6ContentListener::defineTable in WP6ContentListener.cpp that will lead to a denial of service attack. This is related to WPXTable.h.

  • CVE-2017-14226HigSep 9, 2017
    affected < 0.10.2-2.4.1fixed 0.10.2-2.4.1

    WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service (heap-based buffer over-read in the WPXTableList class in WPXTable.cpp). This vulnerability can be triggered i