CVE-2023-6185: Improper input validation enabling arbitrary Gstreamer pipeline injection
First published: Mon Dec 11 2023(Updated: )
Improper Input Validation vulnerability in GStreamer integration of The Document Foundation LibreOffice allows an attacker to execute arbitrary GStreamer plugins. In affected versions the filename of the embedded video is not sufficiently escaped when passed to GStreamer enabling an attacker to run arbitrary gstreamer plugins depending on what plugins are installed on the target system.
Credit: security@documentfoundation.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/LibreOffice | <7.5.9 | 7.5.9 |
| redhat/LibreOffice | <7.6.4 | 7.6.4 |
| debian/libreoffice | 1:7.0.4-4+deb11u10 4:7.4.7-1+deb12u4 4:24.2.5-4 4:24.2.6-1 | |
| LibreOffice Draw | >=7.5.0<7.5.9 | |
| LibreOffice Draw | >=7.6.0<7.6.3 | |
| Fedora | =38 | |
| Debian | =11.0 | |
| Debian | =12.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.debian.org/security/2023/dsa-5574
- https://www.libreoffice.org/about-us/security/advisories/cve-2023-6185
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QB7UB6CTWQUDOE657OVVRSDYUY3IPBJG/
- https://lists.debian.org/debian-lts-announce/2023/12/msg00026.html
- https://launchpad.net/bugs/cve/CVE-2023-6185
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2254004
- https://access.redhat.com/errata/RHSA-2024:1480
- https://access.redhat.com/errata/RHSA-2024:1512
- https://access.redhat.com/errata/RHSA-2024:1514
- https://access.redhat.com/errata/RHSA-2024:1513
- https://access.redhat.com/errata/RHSA-2024:3304
- https://access.redhat.com/errata/RHSA-2024:3835
- https://bugzilla.redhat.com/show_bug.cgi?id=2254003
- https://www.libreoffice.org/about-us/security/advisories/cve-2023-6185/
- https://security-tracker.debian.org/tracker/CVE-2023-6185
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6185
- https://nvd.nist.gov/vuln/detail/CVE-2023-6185
- https://ubuntu.com/security/CVE-2023-6185
Frequently Asked Questions
What is the severity of CVE-2023-6185?
CVE-2023-6185 has been rated as having a high severity due to the potential for arbitrary code execution.
How do I fix CVE-2023-6185?
To fix CVE-2023-6185, users should upgrade to LibreOffice version 7.5.10 or later, or version 7.6.5 or later.
Which versions of LibreOffice are affected by CVE-2023-6185?
CVE-2023-6185 affects LibreOffice versions prior to 7.5.10 and 7.6.5.
What is the nature of the vulnerability in CVE-2023-6185?
CVE-2023-6185 is an improper input validation vulnerability that allows attackers to execute arbitrary GStreamer plugins.
Can I mitigate CVE-2023-6185 without upgrading?
There are no known effective mitigations for CVE-2023-6185 other than upgrading to a patched version.
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/title
- agent/weakness
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/severity
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-6185
- agent/software-canonical-lookup
- collector/security-tracker-debian
- source/Debian
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/trending
- agent/source
- agent/author
- agent/last-modified-date
- agent/description
- agent/event
- agent/softwarecombine
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-api
- package-manager/redhat
- package-manager/debian
- vendor/libreoffice
- canonical/libreoffice draw
- version/libreoffice draw/7.5.0
- version/libreoffice draw/7.6.0
- vendor/fedoraproject
- canonical/fedora
- version/fedora/38
- vendor/debian
- canonical/debian
- version/debian/11.0
- version/debian/12.0