wbook_addworksheet in workbook.c in libexcel.a in libexcel 0.01 allows attackers to cause a denial of service (SEGV) via a long second argument. NOTE: this is not a Microsoft product.
{ "source": "CPE_STRING", "cpe": "cpe:2.3:a:libexcel_project:libexcel:0.01:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "0.01" }, { "last_affected": "0.01" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-20304.json"