The ole_init function in ole.c in catdoc 0.95 allows remote attackers to cause a denial of service (heap-based buffer underflow and application crash) or possibly have unspecified other impact via a crafted file, i.e., data is written to memory addresses before the beginning of the tmpBuf buffer. Product bug: https://bugzilla.redhat.com/show_bug.cgi?id=1468471
Created catdoc tracking bugs for this issue: Affects: epel-all [bug 1472876] Affects: fedora-all [bug 1472877]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
*** Bug 1468471 has been marked as a duplicate of this bug. ***