Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 603
Alerts This Week
Warning Icon 1 603

Mageia: 2018-0481 Moderate: libwpd NULL Pointer Dereference DoS

mageia
Calendar Grey December 15, 2018
Dist Mageia Esm H88
A security patch for libwpg in Mageia resolves a critical NULL reference vulnerability resulting in potential service interruption. Released on 20 Nov 2020.
It was discovered there is a NULL pointer dereference in the function WP6ContentListener::defineTable in WP6ContentListener.cpp that will lead to a denial of service attack (CVE-20...

Summary

It was discovered there is a NULL pointer dereference in the function WP6ContentListener::defineTable in WP6ContentListener.cpp that will lead to a denial of service attack (CVE-2018-19208).

References

- https://bugs.mageia.org/show_bug.cgi?id=23864

- http://lists.suse.com/pipermail/sle-security-updates/2018-November/004865.html

- https://security-tracker.debian.org/tracker/CVE-2018-19208

- https://www.cve.org/CVERecord?id=CVE-2018-19208

Resolution

SRPMS

- 6/core/libwpd-0.10.2-1.1.mga6

Publication date: 15 Dec 2018
URL: https://advisories.mageia.org/MGASA-2018-0481.html
Type: security
CVE: CVE-2018-19208

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.