Debian/libreoffice — 105 CVEs

Loading…

All known vulnerabilities

CRITICAL9.8CVE-2024-5261Improper Certificate Validation vulnerability in LibreOffice "LibreOfficeKit" mode disables TLS certification verification LibreOfficeKit c…

from 0, < 4:24.2.4-1

CRITICAL9.8CVE-2019-9851LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands…

from 0, < 1:6.3.0-1

CRITICAL9.8libreoffice - security update

from 0, < 1:6.3.0-1

CRITICAL9.8libreoffice - security update

from 0, < 1:5.2.7-1+deb9u10

CRITICAL9.8libreoffice - security update

from 0, < 1:4.3.3-2+deb8u13

CRITICAL9.8libreoffice - security update

from 0, < 1:6.3.0~rc1-1

CRITICAL9.8libreoffice - security update

from 0, < 1:5.2.7-1+deb9u9

CRITICAL9.8libreoffice - security update

from 0, < 1:6.1.3-1

CRITICAL9.8libreoffice - security update

from 0, < 1:5.2.7-1+deb9u5

CRITICAL9.8libreoffice - security update

from 0, < 1:4.3.3-2+deb8u12

CRITICAL9.8libreoffice - security update

from 0, < 1:6.0.1-1

CRITICAL9.8libreoffice - security update

from 0, < 1:4.3.3-2+deb8u10

CRITICAL9.8libreoffice - security update

from 0, < 1:5.2.7-1+deb9u2

CRITICAL9.8libreoffice - security update

from 0, < 1:4.3.3-2+deb8u7

CRITICAL9.8libreoffice - security update

from 0, < 1:5.2.5-1

CRITICAL9.8LibreOffice before 2016-12-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF fun…

from 0, < 1:5.2.5-1

HIGH8.8Insufficient macro permission validation of The Document Foundation LibreOffice allows an attacker to execute built-in macros without warni…

from 0, < 1:7.0.4-4+deb11u8

HIGH8.8libreoffice - security update

from 0, < 1:7.0.4-4+deb11u8

HIGH8.8libreoffice - security update

from 0, < 1:7.0.4-4+deb11u8

HIGH8.8LibreOffice supports the storage of passwords for web connections in the user’s configuration database.

from 0, < 1:7.0.4-4+deb11u2

HIGH7.8Out-of-bounds write vulnerability in The Document Foundation LibreOffice via crafted OOXML documents with mismatched encryption salt parame…

from 0

HIGH7.8libreoffice - security update

from 0, < 1:7.0.4-4+deb11u13

HIGH7.8libreoffice - security update

from 0, < 1:7.0.4-4+deb11u13

HIGH7.8libreoffice - security update

from 0, < 4:7.4.7-1+deb12u7

HIGH7.8libreoffice - security update

from 0, < 1:7.0.4-4+deb11u11

HIGH7.8libreoffice - security update

from 0, < 1:7.0.4-4+deb11u11

HIGH7.8libreoffice - security update

from 0, < 4:7.4.7-1+deb12u5

HIGH7.8libreoffice - security update

from 0, < 1:7.0.4-4+deb11u10

HIGH7.8libreoffice - security update

from 0, < 1:7.0.4-4+deb11u10

HIGH7.8libreoffice - security update

from 0, < 1:7.0.4-4+deb11u7

HIGH7.8libreoffice - security update

from 0, < 1:7.0.4-4+deb11u7

HIGH7.8libreoffice - security update

from 0, < 1:6.1.5-3+deb10u10

HIGH7.8libreoffice - security update

from 0, < 1:7.0.4-4+deb11u6

HIGH7.8Apache OpenOffice opens dBase/DBF documents and shows the contents as spreadsheets.

from 0, < 1:4.3.1-1

HIGH7.8LibreOffice documents can contain macros.

from 0, < 1:6.3.0-1

HIGH7.8libreoffice - security update

from 0, < 1:6.3.1~rc2-1

HIGH7.8libreoffice - security update

from 0, < 1:5.2.7-1+deb9u11

HIGH7.8LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over…

from 0, < 1:6.3.0-1

HIGH7.8When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the def…

from 0, < 1:4.0.3-1

HIGH7.8The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1 does not valida…

from 0, < 1:6.0.2-1

HIGH7.8libreoffice - security update

from 0, < 1:3.5.4+dfsg2-0+deb7u11

HIGH7.8libreoffice - security update

from 0, < 1:6.0.1-1

HIGH7.8libreoffice - security update

from 0, < 1:4.3.3-2+deb8u11

HIGH7.8A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to cr…

from 0, < 1:5.0.2-1

HIGH7.8libreoffice - security update

from 0, < 1:5.0.2-1

HIGH7.8libreoffice - security update

from 0, < 1:3.5.4+dfsg2-0+deb7u10

HIGH7.8libreoffice - security update

from 0, < 1:4.3.3-2+deb8u9

HIGH7.8A vulnerability in the OpenOffice Writer DOC file parser before 4.1.4, and specifically in the WW8Fonts Constructor, allows attackers to cr…

from 0, < 1:3.4.3-1

HIGH7.8libreoffice - security update

from 0, < 1:3.5.4+dfsg2-0+deb7u8

HIGH7.8libreoffice - security update

from 0, < 1:4.3.3-1

HIGH7.8libreoffice - security update

from 0, < 1:4.3.3-2+deb8u5

HIGH7.8libreoffice - security update

from 0, < 1:5.1.4~rc1-1

HIGH7.8libreoffice - security update

from 0, < 1:3.5.4+dfsg2-0+deb7u7

HIGH7.8LibreOffice before 5.0.5 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact…

from 0, < 1:5.0.5~rc1-1

HIGH7.8libreoffice - security update

from 0, < 1:5.0.5~rc1-1

HIGH7.8libreoffice - security update

from 0, < 1:3.5.4+dfsg2-0+deb7u6

HIGH7.5LibreOffice supports the storage of passwords for web connections in the user’s configuration database.

from 0, < 1:7.0.4-4+deb11u2

HIGH7.5An Improper Certificate Validation vulnerability in LibreOffice existed where determining if a macro was signed by a trusted author was don…

from 0, < 1:7.0.4-4+deb11u2

HIGH7.5libreoffice - security update

from 0, < 1:7.0.4-4+deb11u2

HIGH7.5libreoffice - security update

from 0, < 1:6.1.5-3+deb10u8

HIGH7.5LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the docu…

from 0, < 1:7.0.4-4+deb11u1

HIGH7.5libreoffice - security update

from 0, < 1:7.0.4-4+deb11u1

HIGH7.5libreoffice - security update

from 0, < 1:7.0.4-4+deb11u1

HIGH7.5An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate…

from 0

MEDIUM6.5Exposure of Environmental Variables and arbitrary INI file values to an Unauthorized Actor vulnerability in The Document Foundation LibreOf…

from 0, < 1:7.0.4-4+deb11u12

MEDIUM6.5libreoffice - security update

from 0, < 1:7.0.4-4+deb11u9

MEDIUM6.5libreoffice - security update

from 0, < 1:7.0.4-4+deb11u9

MEDIUM6.5libreoffice - security update

from 0, < 1:6.1.5-3+deb10u12

MEDIUM6.5ODF documents can contain forms to be filled out by the user.

from 0, < 1:6.4.4-1

MEDIUM6.5LibreOffice and OpenOffice automatically open embedded content

from 0

MEDIUM6.3libreoffice - security update

from 0, < 1:7.0.4-4+deb11u4

MEDIUM6.3libreoffice - security update

from 0, < 1:7.0.4-4+deb11u4

MEDIUM5.5libreoffice - security update

from 0, < 4:7.4.7-1+deb12u8

MEDIUM5.5libreoffice - security update

from 0, < 1:7.0.4-4+deb11u13

MEDIUM5.5libreoffice - security update

from 0, < 1:3.5.4+dfsg2-0+deb7u9

MEDIUM5.5libreoffice - security update

from 0, < 1:5.2.3-1

MEDIUM5.5libreoffice - security update

from 0, < 1:4.3.3-2+deb8u6

MEDIUM5.3Improper access control in editor components of The Document Foundation LibreOffice allowed an attacker to craft a document that would caus…

from 0, < 1:7.0.4-4+deb11u7

MEDIUM5.3LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources.

from 0, < 1:6.4.4-1

MEDIUM5.3libreoffice - security update

from 0, < 1:6.4.3-1

MEDIUM5.3libreoffice - security update

from 0, < 1:6.1.5-3+deb10u11

MEDIUM4.3LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources.

from 0, < 1:6.3.0~rc1-1

LOW3.3libreoffice - security update

from 0, < 4:7.4.7-1+deb12u6

LOW3.3libreoffice - security update

from 0, < 1:7.0.4-4+deb11u12

LOW3.3libreoffice - security update

from 0, < 1:7.0.4-4+deb11u12

—Rejected reason: DoS issues, or unexploitable crashes, are out of scope for vulnerabilities.

from 0

—LibreOffice before 4.4.6 and 5.x before 5.0.1 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (memo…

from 0, < 1:5.0.1~rc2-1

—Integer overflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (memor…

from 0, < 1:5.0.1~rc1-1

—Integer underflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2, when the configuration setting "Load printer settings wit…

from 0, < 1:5.0.1~rc1-1

—libreoffice - security update

from 0, < 1:3.5.4+dfsg2-0+deb7u5

—libreoffice - security update

from 0, < 1:5.0.1~rc1-1

—libreoffice - security update

from 0, < 1:4.4.2-1

—libreoffice - security update

from 0, < 1:3.5.4+dfsg2-0+deb7u4

—libreoffice - security update

from 0, < 1:3.5.4+dfsg2-0+deb7u3

—libreoffice - security update

from 0, < 1:4.3.3-2

—Use-after-free vulnerability in the socket manager of Impress Remote in LibreOffice 4.x before 4.2.7 and 4.3.x before 4.3.3 allows remote a…

from 0, < 1:4.3.3~rc2~git20141011-1

—LibreOffice 4.2.4 executes unspecified VBA macros automatically, which has unspecified impact and attack vectors, possibly related to doc/d…

from 0, < 1:4.2.5-1

—Apache OpenOffice.org (OOo) before 4.0 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecifie…

from 0, < 1:4.1.0-1

—Apache OpenOffice.org (OOo) before 4.0 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecifie…

from 0, < 1:3.4.3-1

—openoffice.org - remote

from 0, < 1:3.5.4+dfsg-3

pkg:Debian/libreoffice

✅ Check your installed version

All known vulnerabilities