Libreoffice

libreoffice

71 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Libreoffice

libreoffice

71 CVEs

CVEs (71)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-14939 1Libreoffice 1Libreoffice Nov 21, 2024 Aug 5, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The get_app_path function in desktop/unx/source/start.c in LibreOffice through 6.0.5 mishandles the realpath function in certain environments such as FreeBSD libc, which might allow attackers to cause a denial of service...Show more The get_app_path function in desktop/unx/source/start.c in LibreOffice through 6.0.5 mishandles the realpath function in certain environments such as FreeBSD libc, which might allow attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact if LibreOffice is automatically launched during web browsing with pathnames controlled by a remote web site.Show less
CVE-2018-10583 5Apache CanonicalDebian+2 more 7Debian Linux Enterprise Linux DesktopEnterprise Linux Server+4 more Nov 21, 2024 May 1, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file, as demonstrated by xlink:href=fi...Show more An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file, as demonstrated by xlink:href=file://192.168.0.2/test.jpg within an office:document-content element in a .odt XML document.Show less
CVE-2018-10120 4Canonical DebianLibreoffice+1 more 6Debian Linux Enterprise Linux DesktopEnterprise Linux Server+3 more Nov 21, 2024 Apr 16, 2018 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1 does not validate a customizations index, which allows remote attackers to cause a denial of ser...Show more The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1 does not validate a customizations index, which allows remote attackers to cause a denial of service (heap-based buffer overflow with write access) or possibly have unspecified other impact via a crafted document that contains a certain Microsoft Word record.Show less
CVE-2018-10119 4Canonical DebianLibreoffice+1 more 6Debian Linux Enterprise Linux DesktopEnterprise Linux Server+3 more Nov 21, 2024 Apr 16, 2018 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 sot/source/sdstor/stgstrms.cxx in LibreOffice before 5.4.5.1 and 6.x before 6.0.1.1 uses an incorrect integer data type in the StgSmallStrm class, which allows remote attackers to cause a denial of service (use-after-fre...Show more sot/source/sdstor/stgstrms.cxx in LibreOffice before 5.4.5.1 and 6.x before 6.0.1.1 uses an incorrect integer data type in the StgSmallStrm class, which allows remote attackers to cause a denial of service (use-after-free with write access) or possibly have unspecified other impact via a crafted document that uses the structured storage ole2 wrapper file format.Show less
CVE-2018-6871 4Canonical DebianLibreoffice+1 more 9Debian Linux Enterprise Linux DesktopEnterprise Linux Server+6 more Nov 21, 2024 Feb 9, 2018 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document, which use the COM.MICROSOFT.WEBSERVICE function.
CVE-2017-14226 2Libreoffice Libwpd 2Libreoffice Libwpd May 13, 2026 Sep 9, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service (heap-based buffer over-read in the WPXTableList c...Show more WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service (heap-based buffer over-read in the WPXTableList class in WPXTable.cpp). This vulnerability can be triggered in LibreOffice before 5.3.7. It may lead to suffering a remote attack against a LibreOffice application.Show less
CVE-2017-8358 1Libreoffice 1Libreoffice May 13, 2026 Apr 30, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 LibreOffice before 2017-03-17 has an out-of-bounds write caused by a heap-based buffer overflow related to the ReadJPEG function in vcl/source/filter/jpeg/jpegc.cxx.
CVE-2017-7882 1Libreoffice 1Libreoffice May 13, 2026 Apr 15, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 LibreOffice before 2017-03-14 has an out-of-bounds write related to the HWPFile::TagsRead function in hwpfilter/source/hwpfile.cxx.
CVE-2017-7870 1Libreoffice 1Libreoffice May 13, 2026 Apr 14, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 LibreOffice before 2017-01-02 has an out-of-bounds write caused by a heap-based buffer overflow related to the tools::Polygon::Insert function in tools/source/generic/poly.cxx.
CVE-2017-7856 1Libreoffice 1Libreoffice May 13, 2026 Apr 14, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 LibreOffice before 2017-03-11 has an out-of-bounds write caused by a heap-based buffer overflow in the SVMConverter::ImplConvertFromSVM1 function in vcl/source/gdi/svmconverter.cxx.
CVE-2016-10327 1Libreoffice 1Libreoffice May 13, 2026 Apr 14, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 LibreOffice before 2016-12-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF function in vcl/source/filter/wmf/enhwmf.cxx.
CVE-2016-4324 3Canonical DebianLibreoffice 3Debian Linux LibreofficeUbuntu Linux May 6, 2026 Jul 8, 2016 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in LibreOffice before 5.1.4 allows remote attackers to execute arbitrary code via a crafted RTF file, related to stylesheet and superscript tokens.
CVE-2016-0795 2Canonical Libreoffice 2Libreoffice Ubuntu Linux May 6, 2026 Feb 18, 2016 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 LibreOffice before 5.0.5 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted LwpTocSuperLayout record in a LotusWordPro (lwp) document.
CVE-2016-0794 2Canonical Libreoffice 2Libreoffice Ubuntu Linux May 6, 2026 Feb 18, 2016 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 The lwp filter in LibreOffice before 5.0.4 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted LotusWordPro (lwp) document.
CVE-2015-5214 4Apache CanonicalDebian+1 more 4Debian Linux LibreofficeOpenoffice+1 more May 6, 2026 Nov 10, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 LibreOffice before 4.4.6 and 5.x before 5.0.1 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via an index to a...Show more LibreOffice before 4.4.6 and 5.x before 5.0.1 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via an index to a non-existent bookmark in a DOC file.Show less
CVE-2015-5213 4Apache CanonicalDebian+1 more 4Debian Linux LibreofficeOpenoffice+1 more May 6, 2026 Nov 10, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Integer overflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a long...Show more Integer overflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a long DOC file, which triggers a buffer overflow.Show less
CVE-2015-5212 4Apache CanonicalDebian+1 more 4Debian Linux LibreofficeOpenoffice+1 more May 6, 2026 Nov 10, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Integer underflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2, when the configuration setting "Load printer settings with the document" is enabled, allows remote attackers to cause a denial of service...Show more Integer underflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2, when the configuration setting "Load printer settings with the document" is enabled, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via crafted PrinterSetup data in an ODF document.Show less
CVE-2015-4551 4Apache CanonicalDebian+1 more 4Debian Linux LibreofficeOpenoffice+1 more May 6, 2026 Nov 10, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 uses the stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links, which might allow remote attackers to o...Show more LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 uses the stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links, which might allow remote attackers to obtain sensitive information via a crafted document, which embeds data from local files into (1) Calc or (2) Writer.Show less
CVE-2015-1774 6Apache CanonicalDebian+3 more 8Debian Linux Enterprise Linux DesktopEnterprise Linux Server+5 more May 6, 2026 Apr 28, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP docum...Show more The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-bounds write.Show less
CVE-2014-9093 4Canonical DebianFedoraproject+1 more 4Debian Linux FedoraLibreoffice+1 more May 6, 2026 Nov 26, 2014 N/A· v4 N/A· v3 7.5 HIGH· v2 LibreOffice before 4.3.5 allows remote attackers to cause a denial of service (invalid write operation and crash) and possibly execute arbitrary code via a crafted RTF file.

Previous 1 234 Next