CVE-2018-14939

The get_app_path function in desktop/unx/source/start.c in LibreOffice through 6.0.5 mishandles the realpath function in certain environments such as FreeBSD libc, which might allow attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact if LibreOffice is automatically launched during web browsing with pathnames controlled by a remote web site.

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

105047
https://bugs.documentfoundation.org/show_bug.cgi?id=118514
105047
https://bugs.documentfoundation.org/show_bug.cgi?id=118514

Version: 2.1.0

Package LibreOffice-still update in sisyphus on 2018-09-11

ALT-PU-2018-2302-1

Closed vulnerabilities

CVE-2018-14939