LibreOffice

Google “confirms” that exploited Chrome zero-day is actually in libwebp (CVE-2023-5129)

September 27, 2023

UPDATE (September 28, 2023, 03:15 a.m. ET): The CVE-2023-5129 ID has been either rejected or withdrawn by the CVE Numbering Authority (Google), since it’s a duplicate of …

LibreOffice: Stability, security, and continued development

September 7, 2023

LibreOffice, the most widely used open-source office productivity suite, has plenty to recommend it: it’s feature-rich, user-friendly, well-documented, reliable, has an …

EU launches bug bounty programs for five open source solutions

January 25, 2022

The European Union is, once again, calling on bug hunters to delve into specific open source software and report bugs. This time around, the list of software that should be …

A malicious document could lead to RCE in Apache OpenOffice (CVE-2021-33035)

September 22, 2021

Apache OpenOffice, one of the most popular open-source office productivity software suites, sports a RCE vulnerability (CVE-2021-33035) that could be triggered via a specially …

PDF viewers, online validation services vulnerable to digital signature spoofing attacks

February 26, 2019

Academics from Ruhr University Bochum have proven that the majority of popular PDF viewer apps and online digital signature validation services can be tricked into validating …

Malicious macros can trigger RCE in LibreOffice, OpenOffice

February 7, 2019

Achieving remote code execution on systems running LibreOffice or Apache OpenOffice might be as easy as tricking users into opening a malicious ODT (OpenDocument) file and …

Easily exploitable LibreOffice flaw is a godsend for hackers

June 30, 2016

A serious LibreOffice flaw can be easily exploited by attackers to deliver malware on computers running a vulnerable version of the popular free and open source office suite. …