CVE-2017-14731

Source
Severity Medium
Remote Yes
Type Denial of service
Description
ofx_proc_file in ofx_preproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file, as demonstrated by an ofxdump call.
Group Package Affected Fixed Severity Status Ticket
AVG-536 libofx 0.9.12-1 Medium Vulnerable FS#56544
References
https://github.com/libofx/libofx/issues/10
https://github.com/libofx/libofx/commit/fad8418f34094de42e1307113598e0e8bee0a2bd