Univention Bugzilla – Bug 45150
catdoc: Multiple issues (4.2)
Last modified: 2018-02-14 13:31:39 CET
Upstream Debian package version 0.94.4-1.1+deb8u1 fixes: * The ole_init function in ole.c in catdoc 0.95 allows remote attackers to cause a denial of service (heap-based buffer underflow and application crash) or possibly have unspecified other impact via a crafted file, i.e., data is written to memory addresses before the beginning of the tmpBuf buffer. (CVE-2017-11110)
Mass-import from Debian-Security: python -m univention.repong.^Cbmirror -s jessie -r 4.2-3 --override=$HOME/REPOS/repo-ng/mirror/update_ucs42_mirror_from_debian.yml --errata=doc/errata --sql --process=ALL -vvvv --now=201801211553 YAML: git:bd6159834a..449aa5a7cf
YAML: OK (Small adjustment: 24c8f56394: Removed version from YAML text since we don't have this named version (Bug #45150) Build: OK (No patches, the package needed to be build since the Debian package version is too low) Tests: OK - installation works
<http://errata.software-univention.de/ucs/4.2/292.html>