Описание
Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and other products, allows user-assisted remote attackers to read arbitrary files via a crafted XML external entity (XXE) declaration and reference in an RDF document.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| hardy | DNE | |
| lucid | DNE | |
| maverick | DNE | |
| natty | not-affected | uses system raptor |
| oneiric | not-affected | uses system raptor |
| precise | not-affected | 1:3.5.3-0ubuntu1 |
| quantal | not-affected | |
| raring | not-affected | |
| upstream | released | 3.4.6, 3.5.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | ignored | end of life |
| lucid | not-affected | uses system raptor |
| maverick | ignored | end of life |
| natty | not-affected | transitional packages |
| oneiric | not-affected | transitional packages |
| precise | not-affected | transitional packages |
| quantal | DNE | |
| raring | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| hardy | ignored | end of life |
| lucid | released | 1.4.21-1ubuntu1.1 |
| maverick | ignored | end of life |
| natty | released | 1.4.21-2ubuntu0.1 |
| oneiric | released | 1.4.21-5ubuntu0.1 |
| precise | released | 1.4.21-7ubuntu0.1 |
| quantal | released | 1.4.21-7ubuntu1 |
| raring | not-affected | |
| upstream | released | 1.4.21-7.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.0.9-1 |
| lucid | DNE | |
| precise | released | 2.0.6-1ubuntu0.1 |
| quantal | not-affected | 2.0.8-1 |
| raring | not-affected | 2.0.8-2 |
| upstream | released | 2.0.7 |
Показывать по
Ссылки на источники
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and other products, allows user-assisted remote attackers to read arbitrary files via a crafted XML external entity (XXE) declaration and reference in an RDF document.
Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and other products, allows user-assisted remote attackers to read arbitrary files via a crafted XML external entity (XXE) declaration and reference in an RDF document.
Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 ...
Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and other products, allows user-assisted remote attackers to read arbitrary files via a crafted XML external entity (XXE) declaration and reference in an RDF document.
4.3 Medium
CVSS2
6.5 Medium
CVSS3