14 matches found
TencentOS Server 4: libreoffice (TSSA-2025:0236)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0236 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
Mageia: Security Advisory (MGASA-2025-0035)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated libreoffice packages fix security vulnerabilities
Path traversal leading to arbitrary .ttf file write. CVE-2024-12425 URL fetching can be used to exfiltrate arbitrary INI file values and environment variables. CVE-2024-12426...
Ubuntu: Security Advisory (USN-7228-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-5846-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 5846-1] libreoffice security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5846-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 19, 2025 https://www.debian.org/security/faq -...
LibreOffice Multiple Vulnerabilities (Jan 2025) - Mac OS X
LibreOffice is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:libreoffice:libreoffice";...
LibreOffice Multiple Vulnerabilities (Jan 2025) - Windows
LibreOffice is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:libreoffice:libreoffice";...
CVE-2024-12425
A flaw was found in LibreOffice. This vulnerability can allow an attacker to write to arbitrary locations on the file system suffixed with ".ttf" via a specially crafted file that supports embedded font files...
CVE-2024-12425
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in The Document Foundation LibreOffice allows Absolute Path Traversal. An attacker can write to arbitrary locations, albeit suffixed with ".ttf", by supplying a file in a format that supports embedded font...
CVE-2024-12425 Path traversal leading to arbitrary .ttf file write
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in The Document Foundation LibreOffice allows Absolute Path Traversal. An attacker can write to arbitrary locations, albeit suffixed with ".ttf", by supplying a file in a format that supports embedded font...
CVE-2024-12425 Path traversal leading to arbitrary .ttf file write
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in The Document Foundation LibreOffice allows Absolute Path Traversal. An attacker can write to arbitrary locations, albeit suffixed with ".ttf", by supplying a file in a format that supports embedded font...
CVE-2024-12425
CVE-2024-12425 concerns LibreOffice: an improper PATH traversal in the Document Foundation implementation allows an attacker to write to arbitrary locations (suffixing outputs with .ttf) by supplying a file that contains embedded font data. Affected versions are LibreOffice 24.8 and earlier than ...
KLA78812 OSI vulnerabilities in LibreOffice
Information disclosure vulnerabilities were found in LibreOffice. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges. Original advisories CVE-2024-12425: Path traversal leading to arbitrary .ttf file write CVE-2024-12426: URL fetching can be used to...