CVE search results

1 – 2 of 2 results

Detailed view

Sort by:

CVE-2024-23525

Medium priority

Some fixes available 3 of 4

The Spreadsheet::ParseXLSX package before 0.30 for Perl allows XXE attacks because it neglects to use the no_xxe option of XML::Twig.

1 affected package

libspreadsheet-parsexlsx-perl

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libspreadsheet-parsexlsx-perl	Not affected	Fixed	Fixed	Ignored	Ignored

CVE-2024-22368

Medium priority

Some fixes available 3 of 4

The Spreadsheet::ParseXLSX package before 0.28 for Perl can encounter an out-of-memory condition during parsing of a crafted XLSX document. This occurs because the memoize implementation does not have appropriate constraints on...

1 affected package

libspreadsheet-parsexlsx-perl

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libspreadsheet-parsexlsx-perl	Not affected	Fixed	Fixed	Ignored	Ignored

Search CVE reports