CVE-2008-0668
Published: 11 February 2008
The excel_read_HLINK function in plugins/excel/ms-excel-read.c in Gnome Office Gnumeric before 1.8.1 allows user-assisted remote attackers to execute arbitrary code via a crafted XLS file containing XLS HLINK opcodes, possibly because of an integer signedness error that leads to an integer overflow. NOTE: some of these details are obtained from third party information.
Priority
Status
Package | Release | Status |
---|---|---|
gnumeric Launchpad, Ubuntu, Debian |
upstream |
Not vulnerable
(1.8.1)
|
dapper |
Released
(1.6.3-0ubuntu4.1)
|
|
edgy |
Released
(1.7.0-1ubuntu4.1)
|
|
feisty |
Released
(1.7.8-0ubuntu1.1)
|
|
gutsy |
Released
(1.7.11-1ubuntu3.1)
|
|
Patches: vendor: http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:056 |