CVE-2006-4514
EPSS 2.2%libgsf
發布日:2006/11/30修改日:2026/4/28
也稱為:DEBIAN-CVE-2006-4514
描述
Heap-based buffer overflow in the ole_info_read_metabat function in Gnome Structured File library (libgsf) 1.14.0, and other versions before 1.14.2, allows context-dependent attackers to execute arbitrary code via a large num_metabat value in an OLE document, which causes the ole_init_info function to allocate insufficient memory.
受影響套件(2)
- Debian/libgsffrom 0, < 1.14.2-1
- Debian/libgsffrom 0, < 1.11.1-1sarge1