LibreOffice < 3.5.5 Multiple Heap-Based Buffer Overflows (Mac OS X)
High Nessus Plugin ID 61433
SynopsisThe remote host contains an application that is affected by multiple buffer overflow vulnerabilities.
DescriptionA version of LibreOffice prior to 3.5.5 is installed on the remote Mac OS X host. It is, therefore, reportedly affected by multiple heap-based buffer overflow vulnerabilities related to XML manifest handling :
- An error exists related to handling the XML tag hierarchy.
- A boundary error exists when handling the duplication of certain unspecified XML tags.
- An error exists in the base64 decoder related to XML export actions.
SolutionUpgrade to LibreOffice version 3.5.5 or later.