Unrated severityNVD Advisory· Published Apr 28, 2015· Updated Jun 17, 2026
CVE-2015-1774
CVE-2015-1774
Description
The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-bounds write.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
111cpe:2.3:a:apache:openoffice:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apache:openoffice:*:*:*:*:*:*:*:*range: <=4.1.1
- (no CPE)range: <4.1.2
cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*range: <=4.3.6
- cpe:2.3:a:libreoffice:libreoffice:4.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:libreoffice:libreoffice:4.4.1:*:*:*:*:*:*:*
- (no CPE)range: <4.3.7, <4.4.2
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
- osv-coords96 versionspkg:rpm/suse/apache-commons-logging&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/apache-commons-logging&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/apache-commons-logging&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/apache-commons-logging&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/cmis-client&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/cmis-client&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/cmis-client&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/flute&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/flute&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/graphite2&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/graphite2&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/graphite2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/graphite2&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/hyphen&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/hyphen&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/hyphen&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libabw&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libabw&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libabw&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libbase&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libbase&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libcdr&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libcdr&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libcdr&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libe-book&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libe-book&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libe-book&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libetonyek&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libetonyek&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libetonyek&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libfonts&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libfonts&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libformula&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libformula&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libfreehand&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libfreehand&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libfreehand&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libgltf&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libgltf&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libixion&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libixion&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libixion&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/liblangtag&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/liblangtag&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/liblangtag&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/liblayout&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/liblayout&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libloader&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libloader&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libmspub&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libmspub&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libmspub&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libmwaw&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libmwaw&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libmwaw&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libodfgen&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libodfgen&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libodfgen&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/liborcus&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/liborcus&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/liborcus&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libpagemaker&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libpagemaker&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libreoffice&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libreoffice&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libreoffice-share-linker&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libreoffice-share-linker&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libreoffice-voikko&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libreoffice-voikko&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/librepository&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/librepository&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/librevenge&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/librevenge&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/librevenge&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libserializer&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libserializer&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libvisio&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libvisio&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libvisio&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libvoikko&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libvoikko&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libvoikko&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/libwps&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/libwps&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/libwps&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/malaga-suomi&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/malaga-suomi&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/malaga-suomi&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/myspell-dictionaries&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/myspell-dictionaries&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/pentaho-libxml&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/pentaho-libxml&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/pentaho-reporting-flow-engine&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/pentaho-reporting-flow-engine&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012pkg:rpm/suse/sac&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/sac&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012
< 1.1.3-7.1+ 95 more
- (no CPE)range: < 1.1.3-7.1
- (no CPE)range: < 1.1.3-7.1
- (no CPE)range: < 1.1.3-7.1
- (no CPE)range: < 1.1.3-7.1
- (no CPE)range: < 0.5.0-5.1
- (no CPE)range: < 0.5.0-5.1
- (no CPE)range: < 0.5.0-5.1
- (no CPE)range: < 1.3.0-4.2
- (no CPE)range: < 1.3.0-4.2
- (no CPE)range: < 1.3.1-3.1
- (no CPE)range: < 1.3.1-3.1
- (no CPE)range: < 1.3.1-3.1
- (no CPE)range: < 1.3.1-3.1
- (no CPE)range: < 2.8.8-9.1
- (no CPE)range: < 2.8.8-9.1
- (no CPE)range: < 2.8.8-9.1
- (no CPE)range: < 0.1.1-5.3
- (no CPE)range: < 0.1.1-5.3
- (no CPE)range: < 0.1.1-5.3
- (no CPE)range: < 1.1.3-4.3
- (no CPE)range: < 1.1.3-4.3
- (no CPE)range: < 0.1.1-5.3
- (no CPE)range: < 0.1.1-5.3
- (no CPE)range: < 0.1.1-5.3
- (no CPE)range: < 0.1.2-4.2
- (no CPE)range: < 0.1.2-4.2
- (no CPE)range: < 0.1.2-4.2
- (no CPE)range: < 0.1.3-3.5
- (no CPE)range: < 0.1.3-3.5
- (no CPE)range: < 0.1.3-3.5
- (no CPE)range: < 1.1.3-4.9
- (no CPE)range: < 1.1.3-4.9
- (no CPE)range: < 1.1.3-4.3
- (no CPE)range: < 1.1.3-4.3
- (no CPE)range: < 0.1.1-4.9
- (no CPE)range: < 0.1.1-4.9
- (no CPE)range: < 0.1.1-4.9
- (no CPE)range: < 0.0.1-2.1
- (no CPE)range: < 0.0.1-2.1
- (no CPE)range: < 0.9.1-3.1
- (no CPE)range: < 0.9.1-3.1
- (no CPE)range: < 0.9.1-3.1
- (no CPE)range: < 0.5.7-3.1
- (no CPE)range: < 0.5.7-3.1
- (no CPE)range: < 0.5.7-3.1
- (no CPE)range: < 0.2.10-4.8
- (no CPE)range: < 0.2.10-4.8
- (no CPE)range: < 1.1.3-3.2
- (no CPE)range: < 1.1.3-3.2
- (no CPE)range: < 0.1.2-5.1
- (no CPE)range: < 0.1.2-5.1
- (no CPE)range: < 0.1.2-5.1
- (no CPE)range: < 0.3.6-3.3
- (no CPE)range: < 0.3.6-3.3
- (no CPE)range: < 0.3.6-3.3
- (no CPE)range: < 0.1.4-3.9
- (no CPE)range: < 0.1.4-3.9
- (no CPE)range: < 0.1.4-3.9
- (no CPE)range: < 0.7.1-3.1
- (no CPE)range: < 0.7.1-3.1
- (no CPE)range: < 0.7.1-3.1
- (no CPE)range: < 0.0.2-2.3
- (no CPE)range: < 0.0.2-2.3
- (no CPE)range: < 5.0.2.2-13.14
- (no CPE)range: < 5.0.2.2-13.14
- (no CPE)range: < 1-2.1
- (no CPE)range: < 1-2.1
- (no CPE)range: < 4.1-6.3
- (no CPE)range: < 4.1-6.3
- (no CPE)range: < 1.1.3-4.3
- (no CPE)range: < 1.1.3-4.3
- (no CPE)range: < 0.0.2-4.1
- (no CPE)range: < 0.0.2-4.1
- (no CPE)range: < 0.0.2-4.1
- (no CPE)range: < 1.1.2-4.3
- (no CPE)range: < 1.1.2-4.3
- (no CPE)range: < 0.1.3-4.3
- (no CPE)range: < 0.1.3-4.3
- (no CPE)range: < 0.1.3-4.3
- (no CPE)range: < 3.7.1-3.1
- (no CPE)range: < 3.7.1-3.1
- (no CPE)range: < 3.7.1-3.1
- (no CPE)range: < 0.4.1-3.1
- (no CPE)range: < 0.4.1-3.1
- (no CPE)range: < 0.4.1-3.1
- (no CPE)range: < 1.18-3.2
- (no CPE)range: < 1.18-3.2
- (no CPE)range: < 1.18-3.2
- (no CPE)range: < 20150827-5.1
- (no CPE)range: < 20150827-5.1
- (no CPE)range: < 1.1.3-4.3
- (no CPE)range: < 1.1.3-4.3
- (no CPE)range: < 0.9.4-4.5
- (no CPE)range: < 0.9.4-4.5
- (no CPE)range: < 1.3-4.1
- (no CPE)range: < 1.3-4.1
Patches
Vulnerability mechanics
References
13- lists.fedoraproject.org/pipermail/package-announce/2015-April/156582.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2015-May/157550.htmlnvdThird Party Advisory
- lists.opensuse.org/opensuse-updates/2015-05/msg00015.htmlnvdThird Party Advisory
- rhn.redhat.com/errata/RHSA-2015-1458.htmlnvdThird Party Advisory
- www.debian.org/security/2015/dsa-3236nvdThird Party Advisory
- www.openoffice.org/security/cves/CVE-2015-1774.htmlnvdVendor Advisory
- www.securityfocus.com/bid/74338nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1032205nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1032206nvdThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/USN-2578-1nvdThird Party Advisory
- security.gentoo.org/glsa/201603-05nvdThird Party Advisory
- www.libreoffice.org/about-us/security/advisories/cve-2015-1774/nvdVendor Advisory
- www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.