{"id":"CVE-2017-7882","details":"LibreOffice before 2017-03-14 has an out-of-bounds write related to the HWPFile::TagsRead function in hwpfilter/source/hwpfile.cxx.","modified":"2026-04-11T16:54:12.401528Z","published":"2017-04-15T16:59:00.410Z","related":["SUSE-SU-2017:1821-1","SUSE-SU-2017:2315-1","openSUSE-SU-2024:10983-1"],"database_specific":{"unresolved_ranges":[{"cpe":"cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*","extracted_events":[{"last_affected":"5.2.6"}],"source":"CPE_FIELD"},{"extracted_events":[{"fixed":"2017-03-14"}],"source":"DESCRIPTION"}]},"references":[{"type":"ADVISORY","url":"http://www.libreoffice.org/about-us/security/advisories/cve-2017-7882/"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/97684"},{"type":"FIX","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=860"},{"type":"FIX","url":"https://github.com/LibreOffice/core/commit/65dcd1d8195069c8c8acb3a188b8e5616c51029c"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/libreoffice/core","events":[{"introduced":"0"},{"fixed":"65dcd1d8195069c8c8acb3a188b8e5616c51029c"}],"database_specific":{"source":"REFERENCES"}}],"versions":["MELD_LIBREOFFICE_REPOS","libreoffice-3-5-branch-point","libreoffice-3-6-branch-point","libreoffice-3.5.0.0","libreoffice-4-0-branch-point","libreoffice-4-1-branch-point","libreoffice-4-2-branch-point","libreoffice-4-2-milestone-1","libreoffice-4-3-branch-point","libreoffice-4-4-branch-point","libreoffice-5-0-branch-point","libreoffice-5-1-branch-point","libreoffice-5-2-branch-point","libreoffice-5-3-branch-point","sdremote-2.0.0","windows_build_successful_2011_11_08"],"database_specific":{"vanir_signatures_modified":"2026-04-11T16:54:12Z","source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-7882.json","vanir_signatures":[{"id":"CVE-2017-7882-afcb4d11","target":{"file":"hwpfilter/source/hwpfile.cxx","function":"HWPFile::TagsRead"},"source":"https://github.com/libreoffice/core/commit/65dcd1d8195069c8c8acb3a188b8e5616c51029c","signature_version":"v1","deprecated":false,"digest":{"length":2456,"function_hash":"79494200534503613678514790320052016097"},"signature_type":"Function"},{"id":"CVE-2017-7882-c932c00b","target":{"file":"hwpfilter/source/hwpfile.cxx"},"source":"https://github.com/libreoffice/core/commit/65dcd1d8195069c8c8acb3a188b8e5616c51029c","signature_version":"v1","deprecated":false,"digest":{"line_hashes":["33413816105119514852506498690744203356","317631315139754039620755195081163684311","132206938280153598134801323436459845586"],"threshold":0.9},"signature_type":"Line"}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}