[SECURITY] Fedora 20 Update: freexl-1.0.0i-1.fc20
updates at fedoraproject.org
updates at fedoraproject.org
Wed Mar 18 10:22:55 UTC 2015
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-3372
2015-03-09 04:38:34
--------------------------------------------------------------------------------
Name : freexl
Product : Fedora 20
Version : 1.0.0i
Release : 1.fc20
URL : http://www.gaia-gis.it/FreeXL
Summary : Library to extract data from within an Excel spreadsheet
Description :
FreeXL is a library to extract valid data
from within an Excel spreadsheet (.xls)
Design goals:
* simple and lightweight
* stable, robust and efficient
* easily and universally portable
* completely ignore any GUI-related oddity
--------------------------------------------------------------------------------
Update Information:
Four potentially harmful bugs causing crashes and stack corruption
were detected in FreeXL by American Fuzzy Lop and are solved in this release.
Please note: such issues are never realistically expected
to be encountered in real world XLS spreadsheets, anyway
some purposely forged XLS document could be used as a
"poisoned bait" to maliciously open a security breach.
https://groups.google.com/forum/#!topic/spatialite-users/plxKNbYw184
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 6 2015 Volker Fröhlich <volker27 at gmx.at> 1.0.0i-1
- New release with security fixes
* Sat Aug 16 2014 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.0.0f-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.0.0f-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sat Nov 30 2013 Volker Fröhlich <volker27 at gmx.at> 1.0.0f-1
- Drop obsolete patch for aarch64
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1199328 - freexl-1.0.0i is available
https://bugzilla.redhat.com/show_bug.cgi?id=1199328
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update freexl' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list