Advisories » MGASA-2018-0481

Updated libwpd packages fix security vulnerability

Publication date: 15 Dec 2018
Modification date: 15 Dec 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-19208

Description

It was discovered there is a NULL pointer dereference in the function
WP6ContentListener::defineTable in WP6ContentListener.cpp that will lead
to a denial of service attack (CVE-2018-19208).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=23864
• http://lists.suse.com/pipermail/sle-security-updates/2018-November/004865.html
• https://security-tracker.debian.org/tracker/CVE-2018-19208
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19208

SRPMS

6/core

• libwpd-0.10.2-1.1.mga6