CVE-2018-5345

CVE: CVE-2018-5345
Published: 2018-01-12T00:29Z
Vendor: gnome
Products: gcab
Versions: 0.7.4,
Vendor: fedoraproject
Products: fedora
Versions: -,
Description Language: en
Description: A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potentially, execute arbitrary code via a crafted .cab file.
References:
https://access.redhat.com/errata/RHSA-2018:0350
https://bugzilla.redhat.com/show_bug.cgi?id=1527296
https://www.debian.org/security/2018/dsa-4095