LibreOffice CVE-2017-8358: heap-based buffer overflow related to the ReadJPEG function.

by CIRT Team

Description: LibreOffice before 2017-03-17 has an out-of-bounds write caused by a heap-based buffer overflow related to the ReadJPEG function in vcl/source/filter/jpeg/jpegc.cxx.

Impact:  As an impact it is known to affect confidentiality, integrity, and availability.

Mitigation: Updates are available. Please see the references for more information.

Reference URL’s:

• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8358
• https://www.libreoffice.org/about-us/security/advisories/
• https://security-tracker.debian.org/tracker/CVE-2017-8358
• https://access.redhat.com/security/cve/cve-2017-8358
• https://bugzilla.redhat.com/show_bug.cgi?id=1447279
• https://www.suse.com/security/cve/CVE-2017-8358/

CIRT Team

Recommended Posts

Active Exploitation of Critical F5 BIG – IP Vulnerability (CVE–2023-46747) Uncovered in Bangladesh

06 Nov 2024 - Security Advisories & Alerts

Emerging Threat_Stealer Malware (Lumma C2) Campaign with fake CAPTCHA pages

08 Oct 2024 - Security Advisories & Alerts

Detection of Fog Ransomware Footprint in Cyber Space of Bangladesh

12 Sep 2024 - Security Advisories & Alerts