CVE-2016-10327 in Ubuntu

CVE-2016-10327

Priority

Description

LibreOffice before 2016-12-22 has an out-of-bounds write caused by a
heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF function
in vcl/source/filter/wmf/enhwmf.cxx.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10327
https://usn.ubuntu.com/usn/usn-3273-1

Bugs

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=313

Notes

Package

Source: libreoffice (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was not-affected [code not present])
Ubuntu 16.04 LTS (Xenial Xerus):	released (1:5.1.6~rc2-0ubuntu1~xenial2)

Patches:

Upstream:

https://github.com/LibreOffice/core/commit/7485fc2a1484f31631f62f97e5c64c0ae74c6416

Package

Source: openoffice.org (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):	DNE
Ubuntu 16.04 LTS (Xenial Xerus):	DNE

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2019-12-05 18:43:59 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)