Description
HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service (infinite loop and deadlock) via a crafted PPT file.
Remediation
References
https://issues.apache.org/bugzilla/show_bug.cgi?id=57272
http://poi.apache.org/changes.html
http://secunia.com/advisories/61953
http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150228.html
https://access.redhat.com/errata/RHSA-2016:1135
http://www.securityfocus.com/bid/77726
http://www-01.ibm.com/support/docview.wss?uid=swg21996759
Related Vulnerabilities
CVE-2014-0109 Vulnerability in maven package org.apache.cxf:cxf-bundle-jaxrs
CVE-2011-4858 Vulnerability in maven package org.apache.tomcat:tomcat-catalina
CVE-2013-2160 Vulnerability in maven package org.apache.cxf:cxf-parent
CVE-2016-10527 Vulnerability in npm package riot-compiler
CVE-2014-0110 Vulnerability in maven package org.apache.cxf:cxf-rt-transports-http