17 matches found
SUSE CVE-2016-4324
Use-after-free vulnerability in LibreOffice before 5.1.4 allows remote attackers to execute arbitrary code via a crafted RTF file, related to stylesheet and superscript tokens...
Mageia: Security Advisory (MGASA-2016-0246)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The Document Foundation LibreOffice RTF Stylesheet Code Execution Vulnerability(CVE-2016-4324)
SUMMARY An exploitable Use After Free vulnerability exists in the RTF parser LibreOffice. A specially crafted file can cause a use after free resulting in a possible arbitrary code execution. To exploit the vulnerability a malicious file needs to be opened by the user via vulnerable application...
Oracle Linux 7 : libreoffice (ELSA-2017-0914)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2017-0914 advisory. - Resolves: rhbz1435534 CVE-2017-3157 Arbitrary file disclosure in Calc and Writer - Resolves: rhbz1353839 CVE-2016-4324 dereference of invalid STL iterator on...
libreoffice security and bug fix update
1:5.0.6.2-5.0.1.1 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 1:5.0.6.2-5.1 - Resolves: rhbz1435534 CVE-2017-3157 Arbitrary file disclosure in Calc and Writer 1:5.0.6.2-5 - Resolves:...
libreoffice security, bug fix, and enhancement update
libcmis 0.5.1-2 - Resolves: rhbz1330591 fix Google Drive login - Related: rhbz1330591 fix changelog entry 0.5.1-1 - Related: rhbz1290152 new upstream release 0.5.0-2 - Related: rhbz1290152 autoreconf is not needed - Related: rhbz1290152 add a bunch of fixes found by coverity 0.5.0-1 - Resolves:...
openSUSE Security Update : libreoffice (openSUSE-2016-1192)
LibreOffice was updated to version 5.1.5.2, bringing enhancements and bug fixes. - CVE-2016-4324: Parsing the Rich Text Format character style index was insufficiently checked for validity. Documents could be constructed which dereference an iterator to the first entry of an empty STL container...
SUSE SLED12 Security Update : libreoffice (SUSE-SU-2016:2472-1)
LibreOffice was updated to version 5.1.5.2, bringing enhancements and bug fixes. - CVE-2016-4324: Parsing the Rich Text Format character style index was insufficiently checked for validity. Documents could be constructed which dereference an iterator to the first entry of an empty STL container...
SUSE-SU-2016:2472-1 Security update for libreoffice
LibreOffice was updated to version 5.1.5.2, bringing enhancements and bug fixes. - CVE-2016-4324: Parsing the Rich Text Format character style index was insufficiently checked for validity. Documents could be constructed which dereference an iterator to the first entry of an empty STL container...
Fedora 23 : 1:libreoffice (2016-f0552e1341)
Security fix for CVE-2016-4324 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...
Fedora Update for libreoffice FEDORA-2016-f0552e1341
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2016-4324
Use-after-free vulnerability in LibreOffice before 5.1.4 allows remote attackers to execute arbitrary code via a crafted RTF file, related to stylesheet and superscript tokens...
Updated libreoffice packages fix security vulnerability
Updated libreoffice packages fix security vulnerability: Parsing the Rich Text Format character style index was insufficiently checked for validity. Documents can be constructed which dereference an iterator to the first entry of an empty STL container CVE-2016-4324...
LibreOffice RTF parser Use After Free (CVE-2016-4324)
A use-after-free vulnerability exists in the RTF parser of the LibreOffice office suite. The vulnerability is due to invalid parsing of stylesheets in RTF files. By enticing the user to open a specially crafted RTF file, an attacker could exploit this vulnerability to execute arbitrary code on th...
[SECURITY] [DSA 3608-1] libreoffice security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3608-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 29, 2016 https://www.debian.org/security/faq -...
CVE-2016-4324
A use-after-free vulnerability was found in the Rich Text Format RTF document format parser in LibreOffice. By tricking a user into opening a specially crafted RTF document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file...
UBUNTU-CVE-2016-4324
Use-after-free vulnerability in LibreOffice before 5.1.4 allows remote attackers to execute arbitrary code via a crafted RTF file, related to stylesheet and superscript tokens...