-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 23 Feb 2018 11:04:45 +0100
Source: freexl
Binary: libfreexl-dev libfreexl1 libfreexl1-dbg
Architecture: source amd64
Version: 1.0.0b-1+deb7u5
Distribution: wheezy-security
Urgency: high
Maintainer: David Paleino <dapal@debian.org>
Changed-By: Bas Couwenberg <sebastic@debian.org>
Description:
libfreexl-dev - library for direct reading of Microsoft Excel spreadsheets - deve
libfreexl1 - library for direct reading of Microsoft Excel spreadsheets
libfreexl1-dbg - library for direct reading of Microsoft Excel spreadsheets - debu
Changes:
freexl (1.0.0b-1+deb7u5) wheezy-security; urgency=high
.
* Add upstream patch to fix various heap-buffer-overflows.
- heap-buffer-overflow in freexl::destroy_cell of FreeXL 1.0.4
https://bugzilla.redhat.com/show_bug.cgi?id=1547879
- heap-buffer-overflow in freexl.c:1805 parse_SST parse_SST
https://bugzilla.redhat.com/show_bug.cgi?id=1547883
- heap-buffer-overflow in freexl.c:1866 parse_SST of FreeXL 1.0.4
https://bugzilla.redhat.com/show_bug.cgi?id=1547885
- heap-buffer-overflow in freexl.c:383 parse_unicode_string of FreeXL
1.0.4
https://bugzilla.redhat.com/show_bug.cgi?id=1547889
- heap-buffer-overflow in freexl.c:3912 read_mini_biff_next_record of
FreeXL 1.0.4
https://bugzilla.redhat.com/show_bug.cgi?id=1547892
Checksums-Sha1:
50709fc21bb0f143ce0387673470b5539d07ecbf 2013 freexl_1.0.0b-1+deb7u5.dsc
04e7dbf2beec98cb033dce63f66b4017bc796499 909489 freexl_1.0.0b.orig.tar.gz
9c6c19ef01b526df1b806d72d417350306185927 7257 freexl_1.0.0b-1+deb7u5.debian.tar.gz
ea5c05cd0465681cc98bde8562f913dfc0e70592 26444 libfreexl-dev_1.0.0b-1+deb7u5_amd64.deb
da2db5556e7c0a140eb0b5984c9dc20d875289a3 20788 libfreexl1_1.0.0b-1+deb7u5_amd64.deb
2e882fc451ab5ecc0aaf226e95dcfa2268a3c290 43796 libfreexl1-dbg_1.0.0b-1+deb7u5_amd64.deb
Checksums-Sha256:
a21891659796f55ff6e8da87f7835f3d4982d81c225ea8689d4e5430bebecd18 2013 freexl_1.0.0b-1+deb7u5.dsc
da60c6041badd24114b3e4415d72de50c4f1c243fde179a24494e5bbcdc658f0 909489 freexl_1.0.0b.orig.tar.gz
b1ef90224d03f00aed103c563beedcfcb6ac86a5a790277098a5ef7a708c2af6 7257 freexl_1.0.0b-1+deb7u5.debian.tar.gz
26e2ca99db6f58ea986758467fa1dac30f898870144526767fbf43b75a0d4e8c 26444 libfreexl-dev_1.0.0b-1+deb7u5_amd64.deb
1d7b37b21c12a99ef0019fb938640173b6fbc6ec68d37049ef821dd325abd666 20788 libfreexl1_1.0.0b-1+deb7u5_amd64.deb
ca2c6fa79a4eba0e1540cb50c7a212fa4ca661e31d40ab1a99c92a4c0a58dcbf 43796 libfreexl1-dbg_1.0.0b-1+deb7u5_amd64.deb
Files:
747c4835026c6dd76156088185249124 2013 libs extra freexl_1.0.0b-1+deb7u5.dsc
e2e1c59eb2883d825782dfe8fe244207 909489 libs extra freexl_1.0.0b.orig.tar.gz
b6ab2581a604305f294188958b1710fb 7257 libs extra freexl_1.0.0b-1+deb7u5.debian.tar.gz
c91c64ed7193e95c991709ff86a5b71d 26444 libdevel extra libfreexl-dev_1.0.0b-1+deb7u5_amd64.deb
47acccc4825d29bdc4f35a4ee404c777 20788 libs extra libfreexl1_1.0.0b-1+deb7u5_amd64.deb
b5d4d003057fe5e394c11d2e53e84473 43796 debug extra libfreexl1-dbg_1.0.0b-1+deb7u5_amd64.deb
-----BEGIN PGP SIGNATURE-----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=B1KV
-----END PGP SIGNATURE-----
