Debian Catdoc vulnerabilities

12 known vulnerabilities affecting debian/catdoc.

Total CVEs
12
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4LOW8

Vulnerabilities

Page 1 of 1
CVE-2024-52035HIGHCVSS 8.4fixed in catdoc 1:0.95-6~deb12u1 (bookworm)2024
CVE-2024-52035 [HIGH] CVE-2024-52035: catdoc - An integer overflow vulnerability exists in the OLE Document File Allocation Tab... An integer overflow vulnerability exists in the OLE Document File Allocation Table Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 1:0.95-6~deb12u1) bullseye: resolved (fixed in 1:0.95-4.1+
debian
CVE-2024-54028HIGHCVSS 8.4fixed in catdoc 1:0.95-6~deb12u1 (bookworm)2024
CVE-2024-54028 [HIGH] CVE-2024-54028: catdoc - An integer underflow vulnerability exists in the OLE Document DIFAT Parser funct... An integer underflow vulnerability exists in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially crafted malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 1:0.95-6~deb12u1) bullseye: resolved (fixed in 1:0.95-4.1+deb11u1) forky:
debian
CVE-2024-48877HIGHCVSS 8.4fixed in catdoc 1:0.95-6~deb12u1 (bookworm)2024
CVE-2024-48877 [HIGH] CVE-2024-48877: catdoc - A memory corruption vulnerability exists in the Shared String Table Record Parse... A memory corruption vulnerability exists in the Shared String Table Record Parser implementation in xls2csv utility version 0.95. A specially crafted malformed file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 1:0.95-6~deb12u1) bullseye: resolved (fixed in 1:0.95-
debian
CVE-2023-41633LOWCVSS 5.52023
CVE-2023-41633 [MEDIUM] CVE-2023-41633: catdoc - Catdoc v0.95 was discovered to contain a NULL pointer dereference via the compon... Catdoc v0.95 was discovered to contain a NULL pointer dereference via the component xls2csv at src/fileutil.c. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open
debian
CVE-2023-46345LOWCVSS 7.52023
CVE-2023-46345 [HIGH] CVE-2023-46345: catdoc - Catdoc v0.95 was discovered to contain a NULL pointer dereference via the compon... Catdoc v0.95 was discovered to contain a NULL pointer dereference via the component xls2csv at src/xlsparse.c. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open
debian
CVE-2023-31979LOWCVSS 7.82023
CVE-2023-31979 [HIGH] CVE-2023-31979: catdoc - Catdoc v0.95 was discovered to contain a global buffer overflow via the function... Catdoc v0.95 was discovered to contain a global buffer overflow via the function process_file at /src/reader.c. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open
debian
CVE-2019-7233LOWCVSS 8.82019
CVE-2019-7233 [HIGH] CVE-2019-7233: catdoc - In libdoc through 2019-01-28, doc2text in catdoc.c has a NULL pointer dereferenc... In libdoc through 2019-01-28, doc2text in catdoc.c has a NULL pointer dereference. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open
debian
CVE-2019-7156LOWCVSS 6.52019
CVE-2019-7156 [MEDIUM] CVE-2019-7156: catdoc - In libdoc through 2019-01-28, calcFileBlockOffset in ole.c allows division by ze... In libdoc through 2019-01-28, calcFileBlockOffset in ole.c allows division by zero. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open
debian
CVE-2018-20451LOWCVSS 6.52018
CVE-2018-20451 [MEDIUM] CVE-2018-20451: catdoc - The process_file function in reader.c in libdoc through 2017-10-23 has a heap-ba... The process_file function in reader.c in libdoc through 2017-10-23 has a heap-based buffer over-read that allows attackers to cause a denial of service (application crash) via a crafted file. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open
debian
CVE-2018-20453LOWCVSS 6.52018
CVE-2018-20453 [MEDIUM] CVE-2018-20453: catdoc - The getlong function in numutils.c in libdoc through 2017-10-23 has a heap-based... The getlong function in numutils.c in libdoc through 2017-10-23 has a heap-based buffer over-read that allows attackers to cause a denial of service (application crash) via a crafted file. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open
debian
CVE-2017-11110HIGHCVSS 7.8fixed in catdoc 1:0.95-3 (bookworm)2017
CVE-2017-11110 [HIGH] CVE-2017-11110: catdoc - The ole_init function in ole.c in catdoc 0.95 allows remote attackers to cause a... The ole_init function in ole.c in catdoc 0.95 allows remote attackers to cause a denial of service (heap-based buffer underflow and application crash) or possibly have unspecified other impact via a crafted file, i.e., data is written to memory addresses before the beginning of the tmpBuf buffer. Scope: local bookworm: resolved (fixed in 1:0.95-3) bullseye: resolved
debian
CVE-2003-0193LOWCVSS 2.1fixed in catdoc 0.91.5-2 (bookworm)2003
CVE-2003-0193 [LOW] CVE-2003-0193: catdoc - msxlsview.sh in xlsview for catdoc 0.91 and earlier allows local users to overwr... msxlsview.sh in xlsview for catdoc 0.91 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable temporary file names ("word$$.html"). Scope: local bookworm: resolved (fixed in 0.91.5-2) bullseye: resolved (fixed in 0.91.5-2) forky: resolved (fixed in 0.91.5-2) sid: resolved (fixed in 0.91.5-2) trixie: resolved (fixed in 0.91.5-2)
debian