pkg:Debian/libreoffice
105 total CVEsCRITICAL16HIGH48MEDIUM18LOW3
✅ Check your installed version
All known vulnerabilities
- CRITICAL9.8CVE-2024-5261Improper Certificate Validation vulnerability in LibreOffice "LibreOfficeKit" mode disables TLS certification verification LibreOfficeKit c…from 0, < 4:24.2.4-1
- CRITICAL9.8CVE-2019-9851LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands…from 0, < 1:6.3.0-1
- from 0, < 1:6.3.0-1
- from 0, < 1:5.2.7-1+deb9u10
- from 0, < 1:4.3.3-2+deb8u13
- from 0, < 1:6.3.0~rc1-1
- from 0, < 1:5.2.7-1+deb9u9
- from 0, < 1:6.1.3-1
- from 0, < 1:5.2.7-1+deb9u5
- from 0, < 1:4.3.3-2+deb8u12
- from 0, < 1:6.0.1-1
- from 0, < 1:4.3.3-2+deb8u10
- from 0, < 1:5.2.7-1+deb9u2
- from 0, < 1:4.3.3-2+deb8u7
- from 0, < 1:5.2.5-1
- CRITICAL9.8CVE-2016-10327LibreOffice before 2016-12-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF fun…from 0, < 1:5.2.5-1
- HIGH8.8CVE-2023-6186Insufficient macro permission validation of The Document Foundation LibreOffice allows an attacker to execute built-in macros without warni…from 0, < 1:7.0.4-4+deb11u8
- from 0, < 1:7.0.4-4+deb11u8
- from 0, < 1:7.0.4-4+deb11u8
- HIGH8.8CVE-2022-26307LibreOffice supports the storage of passwords for web connections in the user’s configuration database.from 0, < 1:7.0.4-4+deb11u2
- HIGH7.8CVE-2026-4430Out-of-bounds write vulnerability in The Document Foundation LibreOffice via crafted OOXML documents with mismatched encryption salt parame…from 0
- from 0, < 1:7.0.4-4+deb11u13
- from 0, < 1:7.0.4-4+deb11u13
- from 0, < 4:7.4.7-1+deb12u7
- from 0, < 1:7.0.4-4+deb11u11
- from 0, < 1:7.0.4-4+deb11u11
- from 0, < 4:7.4.7-1+deb12u5
- from 0, < 1:7.0.4-4+deb11u10
- from 0, < 1:7.0.4-4+deb11u10
- from 0, < 1:7.0.4-4+deb11u7
- from 0, < 1:7.0.4-4+deb11u7
- from 0, < 1:6.1.5-3+deb10u10
- from 0, < 1:7.0.4-4+deb11u6
- HIGH7.8CVE-2021-33035Apache OpenOffice opens dBase/DBF documents and shows the contents as spreadsheets.from 0, < 1:4.3.1-1
- from 0, < 1:6.3.0-1
- from 0, < 1:6.3.1~rc2-1
- from 0, < 1:5.2.7-1+deb9u11
- HIGH7.8CVE-2019-9852LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over…from 0, < 1:6.3.0-1
- HIGH7.8CVE-2018-11790When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the def…from 0, < 1:4.0.3-1
- HIGH7.8CVE-2018-10120The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1 does not valida…from 0, < 1:6.0.2-1
- from 0, < 1:3.5.4+dfsg2-0+deb7u11
- from 0, < 1:6.0.1-1
- from 0, < 1:4.3.3-2+deb8u11
- HIGH7.8CVE-2017-12608A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to cr…from 0, < 1:5.0.2-1
- from 0, < 1:5.0.2-1
- from 0, < 1:3.5.4+dfsg2-0+deb7u10
- from 0, < 1:4.3.3-2+deb8u9
- HIGH7.8CVE-2017-9806A vulnerability in the OpenOffice Writer DOC file parser before 4.1.4, and specifically in the WW8Fonts Constructor, allows attackers to cr…from 0, < 1:3.4.3-1
- from 0, < 1:3.5.4+dfsg2-0+deb7u8
- from 0, < 1:4.3.3-1
- from 0, < 1:4.3.3-2+deb8u5
- from 0, < 1:5.1.4~rc1-1
- from 0, < 1:3.5.4+dfsg2-0+deb7u7
- HIGH7.8CVE-2016-0795LibreOffice before 5.0.5 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact…from 0, < 1:5.0.5~rc1-1
- from 0, < 1:5.0.5~rc1-1
- from 0, < 1:3.5.4+dfsg2-0+deb7u6
- HIGH7.5CVE-2022-26306LibreOffice supports the storage of passwords for web connections in the user’s configuration database.from 0, < 1:7.0.4-4+deb11u2
- HIGH7.5CVE-2022-26305An Improper Certificate Validation vulnerability in LibreOffice existed where determining if a macro was signed by a trusted author was don…from 0, < 1:7.0.4-4+deb11u2
- from 0, < 1:7.0.4-4+deb11u2
- from 0, < 1:6.1.5-3+deb10u8
- HIGH7.5CVE-2021-25634LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the docu…from 0, < 1:7.0.4-4+deb11u1
- from 0, < 1:7.0.4-4+deb11u1
- from 0, < 1:7.0.4-4+deb11u1
- HIGH7.5CVE-2018-10583An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate…from 0
- MEDIUM6.5CVE-2024-12426Exposure of Environmental Variables and arbitrary INI file values to an Unauthorized Actor vulnerability in The Document Foundation LibreOf…from 0, < 1:7.0.4-4+deb11u12
- from 0, < 1:7.0.4-4+deb11u9
- from 0, < 1:7.0.4-4+deb11u9
- from 0, < 1:6.1.5-3+deb10u12
- from 0, < 1:6.4.4-1
- from 0
- from 0, < 1:7.0.4-4+deb11u4
- from 0, < 1:7.0.4-4+deb11u4
- from 0, < 4:7.4.7-1+deb12u8
- from 0, < 1:7.0.4-4+deb11u13
- from 0, < 1:3.5.4+dfsg2-0+deb7u9
- from 0, < 1:5.2.3-1
- from 0, < 1:4.3.3-2+deb8u6
- MEDIUM5.3CVE-2023-2255Improper access control in editor components of The Document Foundation LibreOffice allowed an attacker to craft a document that would caus…from 0, < 1:7.0.4-4+deb11u7
- MEDIUM5.3CVE-2020-12802LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources.from 0, < 1:6.4.4-1
- from 0, < 1:6.4.3-1
- from 0, < 1:6.1.5-3+deb10u11
- MEDIUM4.3CVE-2019-9849LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources.from 0, < 1:6.3.0~rc1-1
- from 0, < 4:7.4.7-1+deb12u6
- from 0, < 1:7.0.4-4+deb11u12
- from 0, < 1:7.0.4-4+deb11u12
- —CVE-2023-36268Rejected reason: DoS issues, or unexploitable crashes, are out of scope for vulnerabilities.from 0
- —CVE-2015-5214LibreOffice before 4.4.6 and 5.x before 5.0.1 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (memo…from 0, < 1:5.0.1~rc2-1
- —CVE-2015-5213Integer overflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (memor…from 0, < 1:5.0.1~rc1-1
- —CVE-2015-5212Integer underflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2, when the configuration setting "Load printer settings wit…from 0, < 1:5.0.1~rc1-1
- from 0, < 1:3.5.4+dfsg2-0+deb7u5
- from 0, < 1:5.0.1~rc1-1
- from 0, < 1:4.4.2-1
- from 0, < 1:3.5.4+dfsg2-0+deb7u4
- from 0, < 1:3.5.4+dfsg2-0+deb7u3
- from 0, < 1:4.3.3-2
- —CVE-2014-3693Use-after-free vulnerability in the socket manager of Impress Remote in LibreOffice 4.x before 4.2.7 and 4.3.x before 4.3.3 allows remote a…from 0, < 1:4.3.3~rc2~git20141011-1
- —CVE-2014-0247LibreOffice 4.2.4 executes unspecified VBA macros automatically, which has unspecified impact and attack vectors, possibly related to doc/d…from 0, < 1:4.2.5-1
- —CVE-2013-4156Apache OpenOffice.org (OOo) before 4.0 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecifie…from 0, < 1:4.1.0-1
- —CVE-2013-2189Apache OpenOffice.org (OOo) before 4.0 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecifie…from 0, < 1:3.4.3-1
- from 0, < 1:3.5.4+dfsg-3
- from 0, < 1:3.5.4-7
- from 0, < 1:3.4.5-1
- —CVE-2012-2334Integer overflow in filter/source/msfilter/msdffimp.cxx in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before…from 0, < 1:3.5.2~rc2-1
- from 0, < 1:3.4.3-1
- from 0, < 1:3.3.3-1