39 matches found
EUVD-2024-19927
Malicious code in bioql PyPI...
EUVD-2024-21020
Malicious code in bioql PyPI...
CVE-2024-23525
The Spreadsheet::ParseXLSX package before 0.30 for Perl allows XXE attacks because it neglects to use the noxxe option of XML::Twig...
openSUSE Security Advisory (openSUSE-SU-2024:0021-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2024:13584-1 perl-Spreadsheet-ParseXLSX-0.290.0-2.1 on GA media
These are all security issues fixed in the perl-Spreadsheet-ParseXLSX-0.290.0-2.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:13760-1 perl-Spreadsheet-ParseXLSX-0.310.0-1.1 on GA media
These are all security issues fixed in the perl-Spreadsheet-ParseXLSX-0.310.0-1.1 package on the GA media of openSUSE Tumbleweed...
Ubuntu: Security Advisory (USN-6769-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-6769-1: Spreadsheet::ParseXLSX vulnerabilities
Le Dinh Hai discovered that Spreadsheet::ParseXLSX did not properly manage memory during cell merge operations. An attacker could possibly use this issue to consume large amounts of memory, resulting in a denial of service condition. CVE-2024-22368 An Pham discovered that Spreadsheet::ParseXLSX...
Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : Spreadsheet::ParseXLSX vulnerabilities (USN-6769-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6769-1 advisory. Le Dinh Hai discovered that Spreadsheet::ParseXLSX did not properly manage memory during cell merge operations. An attacker could...
openSUSE Security Advisory (openSUSE-SU-2024:0021-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 38 Update: perl-Spreadsheet-ParseXLSX-0.31-1.fc38
This module is an adaptor for that reads XLSX files. For documentation about the various data that you can retrieve from these classes, please see , , , and...
[SECURITY] Fedora 39 Update: perl-Spreadsheet-ParseXLSX-0.31-1.fc39
This module is an adaptor for that reads XLSX files. For documentation about the various data that you can retrieve from these classes, please see , , , and...
Fedora 39 : perl-Spreadsheet-ParseXLSX (2024-5f136f5d10)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-5f136f5d10 advisory. Update to latest version Security fix for CVE-2024-22368 Tenable has extracted the preceding description block directly from the Fedora security...
Fedora 38 : perl-Spreadsheet-ParseXLSX (2024-fa14bfd3b5)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-fa14bfd3b5 advisory. Update to latest version Security fix for CVE-2024-22368 Tenable has extracted the preceding description block directly from the Fedora security...
Fedora: Security Advisory for perl-Spreadsheet-ParseXLSX (FEDORA-2024-fa14bfd3b5)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2024-5f136f5d10)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-3723-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DLA-3723-1 libspreadsheet-parsexlsx-perl - security update
Bulletin has no description...
Debian dla-3723 : libspreadsheet-parsexlsx-perl - security update
The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3723 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3723-1 [email protected]...
XML External Entity (XXE)
Spreadsheet::ParseXLSX is vulnerable to XML External Entity XXE. The vulnerability is caused due to neglecting noxxe option of XML::Twig. This can be exploited to compromise Confidentiality of the system...