Reginaldo Silva discovered that LibreOffice incorrectly handled filenames
when passing embedded videos to GStreamer. If a user were tricked into
opening a specially crafted file, a remote attacker could possibly use this
issue to execute arbitrary GStreamer plugins. (CVE-2023-6185)
Reginaldo Silva discovered that LibreOffice incorrectly handled certain
non-typical hyperlinks. If a user were tricked into opening a specially
crafted file, a remote attacker could possibly use this issue to execute
arbitrary scripts. (CVE-2023-6186)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 23.10 | noarch | libreoffice | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
Ubuntu | 23.10 | noarch | fonts-opensymbol | < 4:102.12+LibO7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
Ubuntu | 23.10 | noarch | gir1.2-lokdocview-0.1 | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
Ubuntu | 23.10 | noarch | libjuh-java | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
Ubuntu | 23.10 | noarch | libjurt-java | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
Ubuntu | 23.10 | noarch | liblibreoffice-java | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
Ubuntu | 23.10 | noarch | liblibreofficekitgtk | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
Ubuntu | 23.10 | noarch | liblibreofficekitgtk-dbgsym | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
Ubuntu | 23.10 | noarch | libofficebean-java | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
Ubuntu | 23.10 | noarch | libofficebean-java-dbgsym | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |