rpm package
suse/libreoffice&distro=SUSE Linux Enterprise Software Development Kit 12 SP3
pkg:rpm/suse/libreoffice&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3
Vulnerabilities (13)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-16858 | — | < 6.2.3.2-43.49.1 | 6.2.3.2-43.49.1 | Mar 25, 2019 | It was found that libreoffice before versions 6.0.7 and 6.1.3 was vulnerable to a directory traversal attack which could be used to execute arbitrary macros bundled with a document. An attacker could craft a document, which when opened by LibreOffice, would execute a Python metho | ||
| CVE-2018-10583 | — | < 6.0.5.2-43.38.5 | 6.0.5.2-43.38.5 | May 1, 2018 | An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file, as demonstrated by xlink:href=file://192.168.0.2/test.jpg within an office:document-content | ||
| CVE-2018-10120 | — | < 6.0.4.2-43.33.1 | 6.0.4.2-43.33.1 | Apr 15, 2018 | The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1 does not validate a customizations index, which allows remote attackers to cause a denial of service (heap-based buffer overflow with write access) or possi | ||
| CVE-2018-10119 | — | < 6.0.4.2-43.33.1 | 6.0.4.2-43.33.1 | Apr 15, 2018 | sot/source/sdstor/stgstrms.cxx in LibreOffice before 5.4.5.1 and 6.x before 6.0.1.1 uses an incorrect integer data type in the StgSmallStrm class, which allows remote attackers to cause a denial of service (use-after-free with write access) or possibly have unspecified other impa | ||
| CVE-2018-6871 | — | < 5.4.5.1-43.19.1 | 5.4.5.1-43.19.1 | Feb 9, 2018 | LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document, which use the COM.MICROSOFT.WEBSERVICE function. | ||
| CVE-2017-9433 | Cri | 9.8 | < 5.3.5.2-43.5.4 | 5.3.5.2-43.5.4 | Jun 5, 2017 | Document Liberation Project libmwaw before 2017-04-08 has an out-of-bounds write caused by a heap-based buffer overflow related to the MsWrd1Parser::readFootnoteCorrespondance function in lib/MsWrd1Parser.cxx. | |
| CVE-2017-9432 | Cri | 9.8 | < 6.0.3.2-43.30.2 | 6.0.3.2-43.30.2 | Jun 5, 2017 | Document Liberation Project libstaroffice before 2017-04-07 has an out-of-bounds write caused by a stack-based buffer overflow related to the DatabaseName::read function in lib/StarWriterStruct.cxx. | |
| CVE-2017-8358 | Cri | 9.8 | < 5.3.5.2-43.5.4 | 5.3.5.2-43.5.4 | Apr 30, 2017 | LibreOffice before 2017-03-17 has an out-of-bounds write caused by a heap-based buffer overflow related to the ReadJPEG function in vcl/source/filter/jpeg/jpegc.cxx. | |
| CVE-2017-7882 | Cri | 9.8 | < 5.3.5.2-43.5.4 | 5.3.5.2-43.5.4 | Apr 15, 2017 | LibreOffice before 2017-03-14 has an out-of-bounds write related to the HWPFile::TagsRead function in hwpfilter/source/hwpfile.cxx. | |
| CVE-2017-7870 | Cri | 9.8 | < 5.3.5.2-43.5.4 | 5.3.5.2-43.5.4 | Apr 14, 2017 | LibreOffice before 2017-01-02 has an out-of-bounds write caused by a heap-based buffer overflow related to the tools::Polygon::Insert function in tools/source/generic/poly.cxx. | |
| CVE-2016-10327 | Cri | 9.8 | < 5.3.5.2-43.5.4 | 5.3.5.2-43.5.4 | Apr 14, 2017 | LibreOffice before 2016-12-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF function in vcl/source/filter/wmf/enhwmf.cxx. | |
| CVE-2015-8947 | Hig | 7.6 | < 5.3.5.2-43.5.4 | 5.3.5.2-43.5.4 | Jul 19, 2016 | hb-ot-layout-gpos-table.hh in HarfBuzz before 1.0.5 allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via crafted data, a different vulnerability than CVE-2016-2052. | |
| CVE-2016-2052 | Hig | 7.6 | < 5.3.5.2-43.5.4 | 5.3.5.2-43.5.4 | Jan 25, 2016 | Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via crafted data, as demonstrated by a buffer over-read resulting from an inverted length check |
- CVE-2018-16858Mar 25, 2019affected < 6.2.3.2-43.49.1fixed 6.2.3.2-43.49.1
It was found that libreoffice before versions 6.0.7 and 6.1.3 was vulnerable to a directory traversal attack which could be used to execute arbitrary macros bundled with a document. An attacker could craft a document, which when opened by LibreOffice, would execute a Python metho
- CVE-2018-10583May 1, 2018affected < 6.0.5.2-43.38.5fixed 6.0.5.2-43.38.5
An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file, as demonstrated by xlink:href=file://192.168.0.2/test.jpg within an office:document-content
- CVE-2018-10120Apr 15, 2018affected < 6.0.4.2-43.33.1fixed 6.0.4.2-43.33.1
The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1 does not validate a customizations index, which allows remote attackers to cause a denial of service (heap-based buffer overflow with write access) or possi
- CVE-2018-10119Apr 15, 2018affected < 6.0.4.2-43.33.1fixed 6.0.4.2-43.33.1
sot/source/sdstor/stgstrms.cxx in LibreOffice before 5.4.5.1 and 6.x before 6.0.1.1 uses an incorrect integer data type in the StgSmallStrm class, which allows remote attackers to cause a denial of service (use-after-free with write access) or possibly have unspecified other impa
- CVE-2018-6871Feb 9, 2018affected < 5.4.5.1-43.19.1fixed 5.4.5.1-43.19.1
LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document, which use the COM.MICROSOFT.WEBSERVICE function.
- affected < 5.3.5.2-43.5.4fixed 5.3.5.2-43.5.4
Document Liberation Project libmwaw before 2017-04-08 has an out-of-bounds write caused by a heap-based buffer overflow related to the MsWrd1Parser::readFootnoteCorrespondance function in lib/MsWrd1Parser.cxx.
- affected < 6.0.3.2-43.30.2fixed 6.0.3.2-43.30.2
Document Liberation Project libstaroffice before 2017-04-07 has an out-of-bounds write caused by a stack-based buffer overflow related to the DatabaseName::read function in lib/StarWriterStruct.cxx.
- affected < 5.3.5.2-43.5.4fixed 5.3.5.2-43.5.4
LibreOffice before 2017-03-17 has an out-of-bounds write caused by a heap-based buffer overflow related to the ReadJPEG function in vcl/source/filter/jpeg/jpegc.cxx.
- affected < 5.3.5.2-43.5.4fixed 5.3.5.2-43.5.4
LibreOffice before 2017-03-14 has an out-of-bounds write related to the HWPFile::TagsRead function in hwpfilter/source/hwpfile.cxx.
- affected < 5.3.5.2-43.5.4fixed 5.3.5.2-43.5.4
LibreOffice before 2017-01-02 has an out-of-bounds write caused by a heap-based buffer overflow related to the tools::Polygon::Insert function in tools/source/generic/poly.cxx.
- affected < 5.3.5.2-43.5.4fixed 5.3.5.2-43.5.4
LibreOffice before 2016-12-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF function in vcl/source/filter/wmf/enhwmf.cxx.
- affected < 5.3.5.2-43.5.4fixed 5.3.5.2-43.5.4
hb-ot-layout-gpos-table.hh in HarfBuzz before 1.0.5 allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via crafted data, a different vulnerability than CVE-2016-2052.
- affected < 5.3.5.2-43.5.4fixed 5.3.5.2-43.5.4
Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via crafted data, as demonstrated by a buffer over-read resulting from an inverted length check