CVE-2017-7870
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-7870
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-7870.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-7870
- Downstream
- Related
- Published
- 2017-04-14T04:59:00Z
- Modified
- 2025-07-01T05:12:16.415398Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
LibreOffice before 2017-01-02 has an out-of-bounds write caused by a heap-based buffer overflow related to the tools::Polygon::Insert function in tools/source/generic/poly.cxx.
- References
-
- http://www.debian.org/security/2017/dsa-3837
- http://www.libreoffice.org/about-us/security/advisories/cve-2017-7870/
- http://www.securityfocus.com/bid/97671
- https://access.redhat.com/errata/RHSA-2017:1975
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=372
- https://security.gentoo.org/glsa/201706-28
- https://github.com/LibreOffice/core/commit/62a97e6a561ce65e88d4c537a1b82c336f012722
- http://www.securitytracker.com/id/1039029
- https://security-tracker.debian.org/tracker/CVE-2017-7870
Affected packages
Debian:11 / libreoffice
Package
- Name
- libreoffice
- Purl
- pkg:deb/debian/libreoffice?arch=source
Debian:12 / libreoffice
Package
- Name
- libreoffice
- Purl
- pkg:deb/debian/libreoffice?arch=source
Debian:13 / libreoffice
Package
- Name
- libreoffice
- Purl
- pkg:deb/debian/libreoffice?arch=source
Git / github.com/libreoffice/core
Affected ranges
- Type
- GIT
- Repo
- https://github.com/libreoffice/core
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
MELD_LIBREOFFICE_REPOS
libreoffice-3-5-branch-point
libreoffice-3-6-branch-point
libreoffice-4-0-branch-point
libreoffice-4-1-branch-point
libreoffice-4-2-branch-point
libreoffice-4-2-milestone-1
libreoffice-4-3-branch-point
libreoffice-4-4-branch-point
libreoffice-5-0-branch-point
libreoffice-5-1-branch-point
libreoffice-5-2-branch-point
libreoffice-5-3-branch-point
windows_build_successful_2011_11_08
calc_libreoffice-3.*
calc_libreoffice-3.4.2.2-buildfix1
libreoffice-3.*
libreoffice-3.5.0.0
libs-extern-sys_libreoffice-3.*
libs-extern-sys_libreoffice-3.4.2.2-buildfix1
libs-extern_libreoffice-3.*
libs-extern_libreoffice-3.4.2.2-buildfix1
sdremote-2.*
sdremote-2.0.0
testing_libreoffice-3.*
testing_libreoffice-3.3.99.4-hotfixes1