CVE-2018-20453

CVE-2018-20453 affects the libdoc library (getlong in numutils.c) with a heap-based buffer over-read in versions up to 2017-10-23. This can cause a denial of service (application crash) when parsing a crafted file. The connected documents corroborate the vulnerable component and impact; no patch/...

CVE-2019-7156

In libdoc up to 2019-01-28, the function calcFileBlockOffset in ole.c allows a division by zero, as described in CVE-2019-7156. The provided documents identify the affected component (libdoc/ole.c) and the root cause (division by zero), with no explicit vendor, product versions, exploit details, ...

CVE-2018-20451

The vulnerability CVE-2018-20451 affects the libdoc library (reader.c, process_file) through 2017-10-23, where a heap-based buffer over-read allows a crafted file to cause a denial of service (application crash). Connected sources consistently describe this as a heap-based over-read in the proces...

CVE-2019-7233

Technical details about CVE-2019-7233 are not publicly disclosed in the provided documents; the materials only reiterate a NULL pointer dereference in libdoc's doc2text (catdoc.c). Monitor for updates.