Oval Definition:	oval:com.ubuntu.bionic:def:20172923000
Revision Date: 2018-04-24 Version: 1 Title: CVE-2017-2923 on Ubuntu 18.04 LTS (bionic) - medium. Description: An exploitable heap based buffer overflow vulnerability exists in the 'read_biff_next_record function' of FreeXL 1.0.3. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-2923 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND NOT While related to the CVE in some way, the 'freexl' package in bionic is not affected (note: '1.0.5-1').
BACK