NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the readofficedocument function. An attacker can cause a denial of service by providing crafted XLSX files that trigger a null pointer dereference during parsing. Remediation There is no fixed version for xln...

Denial of Service (DoS)

Overview xlsx is a Parser and writer for various spreadsheet formats. Affected versions of this package are vulnerable to Denial of Service DoS. An attacker who can send a malicious excel file parsed by this library can cause maximum CPU usage. Note: xlsx package after version 0.18.5 is distribut...

ClamAV 输入验证错误漏洞

Clam AntiVirus ClamAV is an anti-virus package for use on UNIX-like systems. Mainly used in mail servers, using multi-threaded background operation, you can automatically upgrade the virus database. An infinite loop vulnerability exists in the Excel XLM macro analysis module in Clam AntiVirus...

libxls 'xls_appendSST' function integer overflow vulnerability

libxls is a C library for reading Exce xls files. An integer overflow vulnerability exists in the 'xlsappendSST' function in libxls version 1.4. A remote attacker can exploit this vulnerability to execute code memory corruption with the help of specially crafted XLS files...