21 matches found
EUVD-2024-46499
Malicious code in bioql PyPI...
Astra Linux – Vulnerability in LibreOffice
A vulnerability in certificate validation in LibreOffice’s “LibreOfficeKit” mode disables TLS certificate verification. LibreOfficeKit can be used to access LibreOffice functionality through C/C++. Typically, this is used by third-party components to reuse LibreOffice as a library for converting,...
Security update for libreoffice
This update for libreofficefixes the following issues: libreoffice was updated to version 24.8.1.2 jscPED-10362: Release notes: https://wiki.documentfoundation.org/Releases/24.8.0/RC1 and https://wiki.documentfoundation.org/Releases/24.8.0/RC2 and...
Security update for libreoffice
This update for libreoffice fixes the following issues: libreoffice was updated to version 24.8.1.2 jscPED-10362: Release notes: https://wiki.documentfoundation.org/Releases/24.8.0/RC1 and https://wiki.documentfoundation.org/Releases/24.8.0/RC2 and...
MGASA-2024-0268 Updated libreoffice packages fix security vulnerability
TLS certificates are not properly verified when utilizing LibreOfficeKit. CVE-2024-5261...
USN-6877-1 libreoffice vulnerability
It was discovered that LibreOffice incorrectly performed TLS certificate verification when the LibreOfficeKit library is being used by third-party components. A remote attacker could possibly use this issue to obtain sensitive information...
The vulnerability of the LibreOfficeKit component of the LibreOffice office software package allows attackers to execute arbitrary code.
The vulnerability of the LibreOfficeKit component of the LibreOffice office software package is related to errors during the verification of TLS certificates. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
SUSE CVE-2024-5261
Improper Certificate Validation vulnerability in LibreOffice "LibreOfficeKit" mode disables TLS certification verification LibreOfficeKit can be used for accessing LibreOffice functionality through C/C++. Typically this is used by third party components to reuse LibreOffice as a library to conver...
CVE-2024-5261
Improper Certificate Validation vulnerability in LibreOffice "LibreOfficeKit" mode disables TLS certification verification LibreOfficeKit can be used for accessing LibreOffice functionality through C/C++. Typically this is used by third party components to reuse LibreOffice as a library to conver...
CVE-2024-5261
Improper Certificate Validation vulnerability in LibreOffice "LibreOfficeKit" mode disables TLS certification verification LibreOfficeKit can be used for accessing LibreOffice functionality through C/C++. Typically this is used by third party components to reuse LibreOffice as a library to conver...
CVE-2024-5261
Improper Certificate Validation vulnerability in LibreOffice "LibreOfficeKit" mode disables TLS certification verification LibreOfficeKit can be used for accessing LibreOffice functionality through C/C++. Typically this is used by third party components to reuse LibreOffice as a library to conver...
DEBIAN-CVE-2024-5261
Improper Certificate Validation vulnerability in LibreOffice "LibreOfficeKit" mode disables TLS certification verification LibreOfficeKit can be used for accessing LibreOffice functionality through C/C++. Typically this is used by third party components to reuse LibreOffice as a library to conver...
CVE-2024-5261
Improper Certificate Validation vulnerability in LibreOffice "LibreOfficeKit" mode disables TLS certification verification LibreOfficeKit can be used for accessing LibreOffice functionality through C/C++. Typically this is used by third party components to reuse LibreOffice as a library to conver...
UBUNTU-CVE-2024-5261
Improper Certificate Validation vulnerability in LibreOffice "LibreOfficeKit" mode disables TLS certification verification LibreOfficeKit can be used for accessing LibreOffice functionality through C/C++. Typically this is used by third party components to reuse LibreOffice as a library to conver...
CVE-2024-5261
Summary: CVE-2024-5261 describes an improper TLS certificate validation in LibreOfficeKit mode, where curl’s CA-verification is disabled via CURLOPT_SSL_VERIFYPEER in vulnerable LibreOffice versions. Affected product/feature: LibreOffice in LibreOfficeKit mode (used by third-party components via ...
CVE-2024-5261 TLS certificate are not properly verified when utilizing LibreOfficeKit
Improper Certificate Validation vulnerability in LibreOffice "LibreOfficeKit" mode disables TLS certification verification LibreOfficeKit can be used for accessing LibreOffice functionality through C/C++. Typically this is used by third party components to reuse LibreOffice as a library to conver...
CVE-2024-5261 TLS certificate are not properly verified when utilizing LibreOfficeKit
Improper Certificate Validation vulnerability in LibreOffice "LibreOfficeKit" mode disables TLS certification verification LibreOfficeKit can be used for accessing LibreOffice functionality through C/C++. Typically this is used by third party components to reuse LibreOffice as a library to conver...
PT-2024-4414 · Document Foundation +7 · Libreoffice +7
Name of the Vulnerable Software and Affected Versions: LibreOffice versions prior to 24.2.4 Description: The issue is related to improper certificate validation in LibreOffice's "LibreOfficeKit" mode, which disables TLS certification verification. This occurs when LibreOffice internally uses "cur...
KLA69718 SB vulnerability in LibreOffice
Improper certificate validation vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories TLS certificate are not properly verified when utilizing LibreOfficeKit Related products LibreOffice CVE list CVE-2024-5261...
SUSE SLED15 / SLES15 Security Update : libreoffice (SUSE-SU-2019:2003-1)
This update for libreoffice fixes the following issues : LibreOffice was updated to 6.2.5.2 fate327121. Security issue fixed : CVE-2018-16858: LibreOffice was vulnerable to a directory traversal attack which could be used to execute arbitrary macros bundled with a document. An attacker could craf...