We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an attacker to create a document which without prompt will execute scripts built-into LibreOffice on clicking a graphic. Such scripts were previously deemed trusted but are now deemed untrusted.
Reserved 2024-03-28 | Published 2024-05-14 | Updated 2024-11-12 | Assigner Document Fdn.CWE-356 Product UI does not Warn User of Unsafe Actions
Thanks to Amel Bouziane-Leblond for for finding and reporting this issue.
www.libreoffice.org/...-us/security/advisories/CVE-2024-3044
lists.debian.org/debian-lts-announce/2024/05/msg00016.html
lists.fedoraproject.org/...3TU3TYDXICKPYHMCNL7ARYYBXACEAYJ4/
Support options