Lucene search
UbuntuUSN-6546-1HistoryDec 11, 2023 - 12:00 a.m.
LibreOffice vulnerabilities
2023-12-1100:00:00
ubuntu.com
14
libreoffice
ubuntu
vulnerabilities
filenames
hyperlinks
gstreamer
remote attacker
arbitrary scripts
Releases
- Ubuntu 23.10
- Ubuntu 23.04
Packages
- libreoffice - Office productivity suite
Details
Reginaldo Silva discovered that LibreOffice incorrectly handled filenames
when passing embedded videos to GStreamer. If a user were tricked into
opening a specially crafted file, a remote attacker could possibly use this
issue to execute arbitrary GStreamer plugins. (CVE-2023-6185)
Reginaldo Silva discovered that LibreOffice incorrectly handled certain
non-typical hyperlinks. If a user were tricked into opening a specially
crafted file, a remote attacker could possibly use this issue to execute
arbitrary scripts. (CVE-2023-6186)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 23.10 | noarch | libreoffice | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | fonts-opensymbol | < 4:102.12+LibO7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | gir1.2-lokdocview-0.1 | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libjuh-java | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libjurt-java | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | liblibreoffice-java | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | liblibreofficekitgtk | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | liblibreofficekitgtk-dbgsym | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libofficebean-java | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
| Ubuntu | 23.10 | noarch | libofficebean-java-dbgsym | < 4:7.6.4-0ubuntu0.23.10.1 | UNKNOWN |
Related
nessus
nessus
RHEL 8 : libreoffice (RHSA-2024:1480)
2024-03-25 00:00:00
RHEL 9 : libreoffice (RHSA-2024:1423)
2024-03-19 00:00:00
RHEL 9 : libreoffice (RHSA-2024:1425)
2024-03-19 00:00:00
debian
debian
[SECURITY] [DSA 5574-1] libreoffice security update
2023-12-11 18:35:03
[SECURITY] [DLA 3703-1] libreoffice security update
2023-12-31 09:28:44
rocky
rocky
libreoffice security update
2024-05-10 14:32:53
libreoffice security fix update
2024-03-27 04:34:32
osv
osv
Important: libreoffice security update
2024-05-10 14:32:53
libreoffice vulnerabilities
2023-12-11 13:03:46
Important: libreoffice security update
2024-03-19 00:00:00
redhat
redhat
(RHSA-2024:1425) Important: libreoffice security update
2024-03-19 17:34:14
(RHSA-2024:1427) Important: libreoffice security update
2024-03-19 17:43:00
(RHSA-2024:1514) Important: libreoffice security fix update
2024-03-26 11:46:13
fedora
fedora
[SECURITY] Fedora 38 Update: libreoffice-7.5.9.2-1.fc38
2023-12-13 01:34:52
[SECURITY] Fedora 38 Update: libcmis-0.6.2-1.fc38
2023-12-13 01:34:52
oraclelinux
oraclelinux
libreoffice security update
2024-03-20 00:00:00
libreoffice security fix update
2024-03-28 00:00:00
ubuntu
ubuntu
LibreOffice vulnerabilities
2023-12-14 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5574-1)
2023-12-12 00:00:00
Mageia: Security Advisory (MGASA-2024-0116)
2024-04-11 00:00:00
openSUSE: Security Advisory for libreoffice (SUSE-SU-2023:4932-1)
2024-03-04 00:00:00
redos
redos
ROS-20240408-07
2024-04-08 00:00:00
almalinux
almalinux
Important: libreoffice security fix update
2024-03-26 00:00:00
Important: libreoffice security update
2024-03-19 00:00:00
kaspersky
kaspersky
KLA62374 Multiple vulnerabilities in LibreOffice
2023-12-11 00:00:00
gentoo
gentoo
LibreOffice: Multiple Vulnerabilities
2024-02-21 00:00:00
mageia
mageia
Updated libreoffice packages fix security vulnerabilities
2024-04-10 07:03:52
veracode
veracode
Improper Preservation Of Permissions
2023-12-15 06:33:46
Improper Input Validation
2023-12-15 06:33:51
debiancve
debiancve
CVE-2023-6185
2023-12-11 12:15:07
CVE-2023-6186
2023-12-11 12:15:07
alpinelinux
alpinelinux
CVE-2023-6186
2023-12-11 12:15:07
cve
cve
CVE-2023-6186
2023-12-11 12:15:07
CVE-2023-6185
2023-12-11 12:15:07
cnvd
cnvd
LibreOffice License Issues Vulnerabilities
2023-12-13 00:00:00
prion
prion
Design/Logic Flaw
2023-12-11 12:15:00
Input validation
2023-12-11 12:15:00
redhatcve
redhatcve
CVE-2023-6186
2023-12-11 13:58:22
CVE-2023-6185
2023-12-11 13:58:14
ubuntucve
ubuntucve
CVE-2023-6186
2023-12-11 00:00:00
CVE-2023-6185
2023-12-11 00:00:00