LibreOffice prior to 4.4.5 and Apache OpenOffice prior to 4.1.2 uses the stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links, which might allow remote malicious users to obtain sensitive information via a crafted document, which embeds data from local files into (1) Calc or (2) Writer.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libreoffice libreoffice |
||
canonical ubuntu linux 15.04 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 14.04 |
||
debian debian linux 7.0 |
||
debian debian linux 8.0 |
||
apache openoffice |