Showing 1 - 14 of 14

CVE-2023-6185

Status Candidate

Overview

Improper Input Validation vulnerability in GStreamer integration of The Document Foundation LibreOffice allows an attacker to execute arbitrary GStreamer plugins. In affected versions the filename of the embedded video is not sufficiently escaped when passed to GStreamer enabling an attacker to run arbitrary gstreamer plugins depending on what plugins are installed on the target system.

Related Files

Red Hat Security Advisory 2024-3835-03: Posted Jun 12, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-3835-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 9.; tags | advisory; systems | linux, redhat; advisories | CVE-2023-6185; SHA-256 | 3b17208804b8a1f83adfb15e5c3e485c09ec8c637d41f0faa4f26d084ebe1cd7; Download | Favorite | View

Red Hat Security Advisory 2024-3304-03: Posted May 23, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-3304-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 7.; tags | advisory; systems | linux, redhat; advisories | CVE-2023-6185; SHA-256 | cb7051dba8ecb04aa99ac0eb5a7afae5536034589cc42002a9e6894d8992ffda; Download | Favorite | View

Red Hat Security Advisory 2024-1514-03: Posted Mar 27, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-1514-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 8.; tags | advisory; systems | linux, redhat; advisories | CVE-2023-6185; SHA-256 | 34ea4d403a60633cb9370a1ff8d81dffa5acf36bc1ec0d896851414f6acb339d; Download | Favorite | View

Red Hat Security Advisory 2024-1513-03: Posted Mar 27, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-1513-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.; tags | advisory; systems | linux, redhat; advisories | CVE-2023-6185; SHA-256 | 577fdd4565b7e22aa6febce304afd67759a42bc1246beef78957bfc619abd558; Download | Favorite | View

Red Hat Security Advisory 2024-1512-03: Posted Mar 27, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-1512-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions.; tags | advisory; systems | linux, redhat; advisories | CVE-2023-6185; SHA-256 | b308b65b8e83a6ac793ca79e1c7506e791ad6ea5526abd6e56ca003ea6308710; Download | Favorite | View

Red Hat Security Advisory 2024-1480-03: Posted Mar 26, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-1480-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, Red Hat Enterprise Linux 8.4 Telecommunications Update Service.; tags | advisory; systems | linux, redhat; advisories | CVE-2023-6185; SHA-256 | 6c0e035b59711644b071ec4424e282a7e0c024d2ff34540f452c637cd83f01ab; Download | Favorite | View

Red Hat Security Advisory 2024-1473-03: Posted Mar 22, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-1473-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.; tags | advisory; systems | linux, redhat; advisories | CVE-2023-6185; SHA-256 | d3e0c922c524bbf1d29c4d55dda3a429b8c2019757212b8b0de9e7d5deb1f340; Download | Favorite | View

Red Hat Security Advisory 2024-1427-03: Posted Mar 20, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-1427-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 9.; tags | advisory; systems | linux, redhat; advisories | CVE-2023-6185; SHA-256 | 5a2893ffd42bc07d4a217744d80084a29ea67f69fdd3247cebb0e2a47307e75b; Download | Favorite | View

Red Hat Security Advisory 2024-1425-03: Posted Mar 20, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-1425-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.; tags | advisory; systems | linux, redhat; advisories | CVE-2023-6185; SHA-256 | a2f3dd69ba7088da91bc8811491d0daa41d28b7b5d0f7116b0858b667b7afd5f; Download | Favorite | View

Red Hat Security Advisory 2024-1423-03: Posted Mar 20, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-1423-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.; tags | advisory; systems | linux, redhat; advisories | CVE-2023-6185; SHA-256 | 64d1a3104aaa346ad3d68729ac78339e19abaa63f42a5738a60fa8ef06c7f805; Download | Favorite | View

Gentoo Linux Security Advisory 202402-29: Posted Feb 22, 2024; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202402-29 - Multiple vulnerabilities have been found in LibreOffice, the worst of which could result in user-assisted code execution. Versions greater than or equal to 7.5.9.2 are affected.; tags | advisory, vulnerability, code execution; systems | linux, gentoo; advisories | CVE-2023-6185, CVE-2023-6186; SHA-256 | dd6e66d7eafddfab7d5156af7a48ea9c2e0fe469f1184c2f3d3a13a501c9039a; Download | Favorite | View

Ubuntu Security Notice USN-6546-2: Posted Dec 15, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 6546-2 - USN-6546-1 fixed vulnerabilities in LibreOffice. This update provides the corresponding updates for Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. Reginaldo Silva discovered that LibreOffice incorrectly handled filenames when passing embedded videos to GStreamer. If a user were tricked into opening a specially crafted file, a remote attacker could possibly use this issue to execute arbitrary GStreamer plugins. Reginaldo Silva discovered that LibreOffice incorrectly handled certain non-typical hyperlinks. If a user were tricked into opening a specially crafted file, a remote attacker could possibly use this issue to execute arbitrary scripts.; tags | advisory, remote, arbitrary, vulnerability; systems | linux, ubuntu; advisories | CVE-2023-6185, CVE-2023-6186; SHA-256 | 808b75d5f543a21d97def30aa63e9371eeed40a1188f1ac039def1ee13521456; Download | Favorite | View

Debian Security Advisory 5574-1: Posted Dec 12, 2023; Authored by Debian | Site debian.org; Debian Linux Security Advisory 5574-1 - Reginaldo Silva discovered two security vulnerabilities in LibreOffice, which could result in the execution of arbitrary scripts or Gstreamer plugins when opening a malformed file.; tags | advisory, arbitrary, vulnerability; systems | linux, debian; advisories | CVE-2023-6185, CVE-2023-6186; SHA-256 | 213eb449b719ea3918fe5b9547405966d36fc8f530f2d761e55375d63d105631; Download | Favorite | View

Ubuntu Security Notice USN-6546-1: Posted Dec 12, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 6546-1 - Reginaldo Silva discovered that LibreOffice incorrectly handled filenames when passing embedded videos to GStreamer. If a user were tricked into opening a specially crafted file, a remote attacker could possibly use this issue to execute arbitrary GStreamer plugins. Reginaldo Silva discovered that LibreOffice incorrectly handled certain non-typical hyperlinks. If a user were tricked into opening a specially crafted file, a remote attacker could possibly use this issue to execute arbitrary scripts.; tags | advisory, remote, arbitrary; systems | linux, ubuntu; advisories | CVE-2023-6185, CVE-2023-6186; SHA-256 | 01fab37c05cd681d38f4c0f1e488e1ac1bd4fefddc1383235b51249b5b081a76; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 235 files
Ubuntu 50 files
Debian 19 files
LiquidWorm 15 files
Apple 9 files
Gentoo 5 files
Google Security Research 3 files
Alter Prime 3 files
Pierre Kim 2 files
Jann Horn 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,163)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,945)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,337)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,987)
UNIX (9,475)
UnixWare (188)
Windows (6,784)
Other

CVE-2023-6185

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems