CVE-2015-5213

Title: CVE-2015-5213 DOC piecetable Integer Overflow

Announced: November  5, 2015

Fixed in: LibreOffice 4.4.5/5.0.0

Description:

The number of pieces in a Microsoft Word .doc file is counted via an unsigned 16 bit number. A sufficiently long document can be constructed which causes that count to overflow and insufficient memory to be allocated for the number of pieces that are copied into it.


All users are recommended to upgrade to LibreOffice >= 4.4.5 or >= 5.0.0

References:

    CVE-2015-5213

Latest Tweets

@libreoffice
@tdforg