KLA11017
A buffer overflow vulnerability in LibreOffice
Updated: 06/26/2019
Detect date
?
04/30/2017
Severity
?
Critical
Description

An out-of-bounds write vulnerability was found in LibreOffice. By exploiting this vulnerability malicious users can possibly cause a denial of service or obtain sensitive information. This vulnerability can be exploited remotely.


Technical details

This vulnerability is related to the ReadJPEG function in vcl/source/filter/jpeg/jpegc.cxx.

An out-of-bounds write is caused by a heap-based overflow.

Affected products

LibreOffice 5.2.6 and earlier

Solution

Update to the latest version
Get LibreOffice

Original advisories

ofz#889 readjust jpeg import
libreoffice: Heap-buffer-overflow in null_convert

Impacts
?
OSI 
[?]

DoS 
[?]
CVE-IDS
?
CVE-2017-83587.5Critical