Vulnerability in Libreoffice
CVE-2014-3693
Use-after-free vulnerability in the socket manager of Impress Remote in LibreOffice 4.x before 4.2.7 and 4.3.x before 4.3.3 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted reque…
EPSS: 0.043 (89.1th percentile) — read the EPSS interpretation.
Affected products
- Libreoffice — versions 4.0.0, 4.0.1, 4.0.2
- Canonical Ubuntu_linux — versions 14.04, 14.10
- Opensuse — versions 13.1
- Redhat Enterprise_linux_desktop — versions 7.0
- Redhat Enterprise_linux_server — versions 7.0
- Redhat Enterprise_linux_workstation — versions 7.0
- N/a — versions n/a
References
- secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)
- 62396 (x_refsource_SECUNIA, third-party-advisory)
- 71351 (vdb-entry, x_refsource_BID)
- USN-2398-1 (x_refsource_UBUNTU, vendor-advisory, Patch, Third Party Advisory)
- RHSA-2015:0377 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- 62132 (x_refsource_SECUNIA, third-party-advisory)
- openSUSE-SU-2014:1412 (vendor-advisory, Third Party Advisory, x_refsource_SUSE)
- 62111 (x_refsource_SECUNIA, third-party-advisory)
- GLSA-201603-05 (vendor-advisory, x_refsource_GENTOO)