KLA11017
A buffer overflow vulnerability in LibreOffice
Обновлено: 26/06/2019
Дата обнаружения
30/04/2017
Уровень угрозы
Critical
Описание

An out-of-bounds write vulnerability was found in LibreOffice. By exploiting this vulnerability malicious users can possibly cause a denial of service or obtain sensitive information. This vulnerability can be exploited remotely.


Technical details

This vulnerability is related to the ReadJPEG function in vcl/source/filter/jpeg/jpegc.cxx.

An out-of-bounds write is caused by a heap-based overflow.

Пораженные продукты

LibreOffice 5.2.6 and earlier

Решение

Update to the latest version
Get LibreOffice

Первичный источник обнаружения
ofz#889 readjust jpeg import
libreoffice: Heap-buffer-overflow in null_convert
Оказываемое влияние
?
OSI 
[?]

DoS 
[?]
Связанные продукты
LibreOffice
CVE-IDS
CVE-2017-83587.5Critical