Fedora 26 : libwpd (2017-63ff51c0dc)

new upstream release ---- - heap overflow in libwpd Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Fedora Update for libwpd FEDORA-2017-63ff51c0dc

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

LibreOffice libwpd Denial of Service Vulnerability

LibreOffice is a free and open source office software suite developed by The Document Foundation TDF. The suite consists of Writer text documents, Calc spreadsheets and Impress presentations and other applications. libwpd is one of the libraries used to read and convert Word Perfect documents . A...

Heap overflow

WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service heap-based buffer over-read in the WPXTableList class in WPXTable.cpp. This vulnerability can be triggered in LibreOffice befor...

CVE-2017-14226

WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service heap-based buffer over-read in the WPXTableList class in WPXTable.cpp. This vulnerability can be triggered in LibreOffice befor...

DEBIAN-CVE-2017-14226

WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service heap-based buffer over-read in the WPXTableList class in WPXTable.cpp. This vulnerability can be triggered in LibreOffice befor...

UBUNTU-CVE-2017-14226

WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service heap-based buffer over-read in the WPXTableList class in WPXTable.cpp. This vulnerability can be triggered in LibreOffice befor...

CVE-2017-14226

WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service heap-based buffer over-read in the WPXTableList class in WPXTable.cpp. This vulnerability can be triggered in LibreOffice befor...

CVE-2017-14226

WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service heap-based buffer over-read in the WPXTableList class in WPXTable.cpp. This vulnerability can be triggered in LibreOffice befor...

CVE-2017-14226

CVE-2017-14226 affects libwpd 0.10.1, where WP1/WP5/WP42StylesListener implementations mishandle iterators, causing a heap-based buffer over-read in WPXTable.cpp (WPXTableList) that can enable remote denial of service against LibreOffice apps prior to 5.3.7. Public reports across multiple distrib...

CVE-2017-14226

WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service heap-based buffer over-read in the WPXTableList class in WPXTable.cpp. This vulnerability can be triggered in LibreOffice befor...

dlplibs: Bad-free in std::__1::__shared_ptr_pointer<librevenge::RVNGInputStream*, std::__1::default_d

Detailed report: https://oss-fuzz.com/testcase?key=5495959146463232 Project: dlplibs Fuzzer: afldlplibswpdfuzzer Fuzz target binary: wpdfuzzer Job Type: aflasandlplibs Platform Id: linux Crash Type: Bad-free Crash Address: 0x7f5d72160220 Crash State: std::1::sharedptrpointer::sharedptr...

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the libwpd-tools package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the libwpd-stream8 package of the Debian GNU/Linux operating system can be exploited, leading to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the libwpd-stream8c2a package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

Debian DLA-44-1 : libwpd security update

Fix arbitrary code execution by remote attackers via crafted Wordperfect .WPD documents. NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

[SECURITY] [DLA 44-1] libwpd security update

Package : libwpd Version : 0.8.14-1+deb6u1 CVE ID : CVE-2012-2149 Fix arbitrary code execution by remote attackers via crafted Wordperfect .WPD documents...

Slackware Advisory SSA:2007-085-02 libwpd

The remote host is missing an update as announced via advisory SSA:2007-085-02. OpenVAS Vulnerability Test $Id: esoftslkssa200708502.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...

Slackware: Security Advisory (SSA:2007-085-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Scientific Linux Security Update : libwpd on SL5.x i386/x86_64 (20120626)

libwpd is a library for reading and converting Corel WordPerfect Office documents. A buffer overflow flaw was found in the way libwpd processed certain Corel WordPerfect Office documents .wpd files. An attacker could provide a specially crafted .wpd file that, when opened in an application linked...