CVE-2017-9432

Опубликовано: 05 июн. 2017

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

Document Liberation Project libstaroffice before 2017-04-07 has an out-of-bounds write caused by a stack-based buffer overflow related to the DatabaseName::read function in lib/StarWriterStruct.cxx.

Ссылки

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1029
Issue Tracking
Third Party Advisory
VDB Entry
https://github.com/fosnola/libstaroffice/commit/2d6253c7a692a3d92785dd990fce7256ea05e794
Patch
Third Party Advisory
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1029
Issue Tracking
Third Party Advisory
VDB Entry
https://github.com/fosnola/libstaroffice/commit/2d6253c7a692a3d92785dd990fce7256ea05e794
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:libstaroffice_project:libstaroffice:*:*:*:*:*:*:*:*

Версия до 0.0.3 (включая)

EPSS

Процентиль: 74%

0.00832

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-787

Связанные уязвимости

CVE-2017-9432

CVSS3: 9.8

ubuntu

больше 8 лет назад

Document Liberation Project libstaroffice before 2017-04-07 has an out-of-bounds write caused by a stack-based buffer overflow related to the DatabaseName::read function in lib/StarWriterStruct.cxx.

CVE-2017-9432

CVSS3: 9.8

debian

больше 8 лет назад

Document Liberation Project libstaroffice before 2017-04-07 has an out ...

GHSA-whjq-p746-p5qj

CVSS3: 9.8

github

больше 3 лет назад

Document Liberation Project libstaroffice before 2017-04-07 has an out-of-bounds write caused by a stack-based buffer overflow related to the DatabaseName::read function in lib/StarWriterStruct.cxx.

SUSE-SU-2018:1076-1

suse-cvrf

почти 8 лет назад

Recommended update for LibreOffice

EPSS

Процентиль: 74%

0.00832

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-787