[v3.1] antiword: buffer overflow (CVE-2014-8123)
Buffer overflow in the bGetPPS function in wordole.c in Antiword 0.37 allows remote attackers to cause a denial of service (crash) via a crafted document.
References:
http://seclists.org/oss-sec/2014/q4/874
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8123
http://www.securityfocus.com/bid/71386
(from redmine: issue id 3788, created on 2015-01-27, closed on 2017-05-17)
- Relations:
- parent #3784
- Changesets:
- Revision b530ee0f by Natanael Copa on 2015-01-30T10:29:57Z:
main/antiword: security fix for CVE-2014-8123
ref #3784
fixes #3788
(cherry picked from commit b53e06d83f6743f8a5b6a7bac9893af4033d27be)