Computer vulnerabilities of LibreOffice

LibreOffice: information disclosure via Stealth Mode Bullet Graphics
An attacker can bypass access restrictions to data via Stealth Mode Bullet Graphics of LibreOffice, in order to obtain sensitive information...
CVE-2019-9849, DLA-1947-1, DSA-4483-1, openSUSE-SU-2019:2057-1, openSUSE-SU-2019:2183-1, SUSE-SU-2019:2231-1, SUSE-SU-2019:2401-1, SUSE-SU-2019:2402-1, USN-4063-1, VIGILANCE-VUL-29799

LibreOffice: code execution via an hypertext link
An attacker can use a vulnerability in the handling of hypertext links in LibreOffice, in order to run an external program...
CVE-2019-9847, VIGILANCE-VUL-29258

LibreOffice/OpenOffice: code execution via Macro/Event Script Event-listener
An attacker can use a vulnerability via Macro/Event Script Event-listener of LibreOffice/OpenOffice, in order to run code...
CERTFR-2019-AVI-047, CVE-2018-16858, DLA-1669-1, DSA-4381-1, openSUSE-SU-2019:1929-1, RHSA-2019:2130-01, SUSE-SU-2019:1894-1, USN-3883-1, VIGILANCE-VUL-28427

LibreOffice: buffer overflow via FreeBSD realpath
An attacker can generate a buffer overflow via FreeBSD realpath() of LibreOffice, in order to trigger a denial of service, and possibly to run code...
118514, CVE-2018-14939, VIGILANCE-VUL-26911

LibreOffice/OpenOffice: information disclosure via SMB Credentials
An attacker can bypass access restrictions to data via SMB Credential of LibreOffice/OpenOffice, in order to obtain sensitive information...
CVE-2018-10583, openSUSE-SU-2018:2532-1, openSUSE-SU-2018:2533-1, openSUSE-SU-2018:3796-1, RHSA-2018:3054-01, SUSE-SU-2018:2485-1, SUSE-SU-2018:2485-2, SUSE-SU-2018:2535-1, SUSE-SU-2018:3683-1, USN-3883-1, VIGILANCE-VUL-26023

LibreOffice: buffer overflow via SwCTBWrapper-Read
An attacker can generate a buffer overflow via SwCTBWrapper::Read() of LibreOffice, in order to trigger a denial of service, and possibly to run code...
CVE-2018-10120, DLA-1356-1, DSA-4178-1, openSUSE-SU-2018:1311-1, RHSA-2018:3054-01, SUSE-SU-2018:1296-1, USN-3883-1, VIGILANCE-VUL-25881

LibreOffice: use after free via StgSmallStrm
An attacker can force the usage of a freed memory area via StgSmallStrm of LibreOffice, in order to trigger a denial of service, and possibly to run code...
CVE-2018-10119, DLA-1356-1, DSA-4178-1, openSUSE-SU-2018:1311-1, RHSA-2018:3054-01, SUSE-SU-2018:1296-1, USN-3883-1, VIGILANCE-VUL-25880

LibreOffice: directory traversal
An attacker can traverse directories of LibreOffice, in order to read a file outside the service root path...
CVE-2018-1055-REJECT, CVE-2018-6871, DSA-4111-1, DSA-4111-2, FEDORA-2018-0a3b07a003, FEDORA-2018-3eb4d8e4c4, openSUSE-SU-2018:0446-1, RHSA-2018:0418-01, RHSA-2018:0517-01, SUSE-SU-2018:0428-1, USN-3579-1, USN-3579-2, USN-3579-3, VIGILANCE-VUL-25275

libwpd: out-of-bounds memory reading via WPXTableList
An attacker can force a read at an invalid address via WPXTableList of libwpd, in order to trigger a denial of service, or to obtain sensitive information...
112269, CVE-2017-14226, FEDORA-2017-63ff51c0dc, FEDORA-2017-6e66393536, openSUSE-SU-2017:2943-1, SUSE-SU-2017:2931-1, VIGILANCE-VUL-23796

LibreOffice: memory corruption via ReadJPEG
An attacker can generate a memory corruption via ReadJPEG() of LibreOffice, in order to trigger a denial of service, and possibly to run code...
CVE-2017-8358, openSUSE-SU-2017:1851-1, openSUSE-SU-2017:2488-1, VIGILANCE-VUL-22614

Our database contains other pages. You can request a free trial to read them.

Display information about LibreOffice:

https://www.libreoffice.org/