CVE-2023-0950: Array Index UnderFlow in Calc Formula Parsing
First published: Thu May 25 2023(Updated: )
Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet formulas, such as AGGREGATE, could be created with less parameters passed to the formula interpreter than it expected, leading to an array index underflow, in which case there is a risk that arbitrary code could be executed. This issue affects: The Document Foundation LibreOffice 7.4 versions prior to 7.4.6; 7.5 versions prior to 7.5.1.
Credit: security@documentfoundation.org security@documentfoundation.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Libreoffice Libreoffice | >=7.5.0<7.5.2 | |
| Libreoffice Libreoffice | >=7.4.0<7.4.6 | |
| Debian Debian Linux | =10.0 | |
| debian/libreoffice | <=1:6.1.5-3+deb10u7 | 1:6.1.5-3+deb10u10 1:7.0.4-4+deb11u7 1:7.0.4-4+deb11u8 4:7.4.7-1 4:7.4.7-1+deb12u1 4:7.6.4~rc1-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.libreoffice.org/about-us/security/advisories/CVE-2023-0950
- https://www.debian.org/security/2023/dsa-5415
- https://lists.debian.org/debian-lts-announce/2023/08/msg00014.html
- https://security.gentoo.org/glsa/202311-15
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2210187
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2210188
- https://access.redhat.com/errata/RHSA-2023:6508
- https://access.redhat.com/errata/RHSA-2023:6933
- https://bugzilla.redhat.com/show_bug.cgi?id=2210186
- https://www.libreoffice.org/about-us/security/advisories/cve-2023-0950/
- https://security-tracker.debian.org/tracker/CVE-2023-0950
Frequently Asked Questions
What is CVE-2023-0950?
CVE-2023-0950 is an Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice.
What is the severity of CVE-2023-0950?
CVE-2023-0950 has a severity level of critical.
How does CVE-2023-0950 affect LibreOffice?
CVE-2023-0950 allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded in certain versions of LibreOffice.
What is the affected software by CVE-2023-0950?
The affected software by CVE-2023-0950 includes LibreOffice versions 7.5.0 to 7.5.2, LibreOffice versions 7.4.0 to 7.4.6, and Debian Linux version 10.0.
How can I fix CVE-2023-0950?
To fix CVE-2023-0950, update to the latest versions of LibreOffice (7.5.3 or higher), or apply the relevant security patches provided by Debian for Debian Linux.
- collector/nvd-latest
- vendor/libreoffice
- vendor/debian
- vendor/debian linux
- collector/nvd-index
- collector/security-tracker-debian
- collector/nvd-api
- agent/author
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-0950
- agent/tags
- agent/severity
- agent/references
- agent/weakness
- agent/title
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- canonical/libreoffice libreoffice
- version/libreoffice libreoffice/7.5.0
- version/libreoffice libreoffice/7.4.0
- canonical/debian debian linux
- version/debian debian linux/10.0
- package-manager/debian