Lucene search
Document Fdn.CVELIST:CVE-2021-25633HistoryOct 11, 2021 - 12:00 a.m.
CVE-2021-25633 Content Manipulation with Double Certificate Attack
2021-10-1100:00:00
CWE-295
Document Fdn.
www.cve.org
2
LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature is valid. An Improper Certificate Validation vulnerability in LibreOffice allowed an attacker to create a digitally signed ODF document, by manipulating the documentsignatures.xml or macrosignatures.xml stream within the document to combine multiple certificate data, which when opened caused LibreOffice to display a validly signed indicator but whose content was unrelated to the signature shown. This issue affects: The Document Foundation LibreOffice 7-0 versions prior to 7.0.6; 7-1 versions prior to 7.1.2.
CNA Affected
[
{
"product": "LibreOffice",
"vendor": "The Document Foundation",
"versions": [
{
"lessThan": "7.0.6",
"status": "affected",
"version": "7-0",
"versionType": "custom"
},
{
"lessThan": "7.1.2",
"status": "affected",
"version": "7-1",
"versionType": "custom"
}
]
}
]Related
cnvd
cnvd
LibreOffice Trust Management Issue Vulnerability (CNVD-2022-55627)
2021-10-18 00:00:00
alpinelinux
alpinelinux
CVE-2021-25633
2021-10-11 17:15:07
redhatcve
redhatcve
CVE-2021-25633
2021-10-12 08:41:14
ubuntucve
ubuntucve
CVE-2021-25633
2021-10-11 00:00:00
nvd
nvd
CVE-2021-25633
2021-10-11 17:15:07
CVE-2021-41830
2021-10-11 08:15:06
cve
cve
CVE-2021-25633
2021-10-11 17:15:07
CVE-2021-41830
2021-10-11 08:15:06
redos
redos
ROS-20211223-02
2021-12-23 00:00:00
prion
prion
Input validation
2021-10-11 17:15:00
Code injection
2021-10-11 08:15:00
debiancve
debiancve
CVE-2021-25633
2021-10-11 17:15:07
nessus
nessus
Ubuntu 20.04 LTS : LibreOffice vulnerabilities (USN-5153-1)
2021-11-23 00:00:00
Debian DSA-4988-1 : libreoffice - security update
2021-10-17 00:00:00
AlmaLinux 8 : libreoffice (ALSA-2022:1766)
2022-05-12 00:00:00
osv
osv
libreoffice vulnerabilities
2021-11-22 13:11:32
libreoffice - security update
2021-10-16 00:00:00
Moderate: libreoffice security, bug fix, and enhancement update
2022-05-10 08:00:06
cvelist
cvelist
CVE-2021-41830 Double Certificate Attack
2021-10-11 08:10:12
openvas
openvas
Debian: Security Advisory (DSA-4988-1)
2021-10-18 00:00:00
Ubuntu: Security Advisory (USN-5153-1)
2021-11-23 00:00:00
Mageia: Security Advisory (MGASA-2021-0471)
2022-01-28 00:00:00
kaspersky
kaspersky
KLA12323 Multiple vulnerabilities in LibreOffice
2021-09-19 00:00:00
ubuntu
ubuntu
LibreOffice vulnerabilities
2021-11-22 00:00:00
debian
debian
[SECURITY] [DSA 4988-1] libreoffice security update
2021-10-16 19:23:57
oraclelinux
oraclelinux
libreoffice security, bug fix, and enhancement update
2022-05-17 00:00:00
almalinux
almalinux
Moderate: libreoffice security, bug fix, and enhancement update
2022-05-10 08:00:06
rocky
rocky
libreoffice security, bug fix, and enhancement update
2022-05-10 08:00:06
redhat
redhat
mageia
mageia
Updated libreoffice packages fix security vulnerability
2021-10-12 09:56:11
thn
thn
Digital Signature Spoofing Flaws Uncovered in OpenOffice and LibreOffice
2021-10-12 09:02:00
freebsd
freebsd
Apache OpenOffice -- multiple vulnerabilities.
2021-05-04 00:00:00