{"id":"CVE-2017-8358","details":"LibreOffice before 2017-03-17 has an out-of-bounds write caused by a heap-based buffer overflow related to the ReadJPEG function in vcl/source/filter/jpeg/jpegc.cxx.","modified":"2026-04-11T12:05:59.783124Z","published":"2017-04-30T17:59:00.967Z","related":["SUSE-SU-2017:1821-1","SUSE-SU-2017:2315-1","openSUSE-SU-2024:10983-1"],"database_specific":{"unresolved_ranges":[{"extracted_events":[{"last_affected":"5.2.6"}],"cpe":"cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*","source":"CPE_FIELD"},{"extracted_events":[{"fixed":"2017-03-17"}],"source":"DESCRIPTION"}]},"references":[{"type":"WEB","url":"http://www.securityfocus.com/bid/98395"},{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=889"},{"type":"FIX","url":"https://github.com/LibreOffice/core/commit/6e6e54f944a5ebb49e9110bdeff844d00a96c56c"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/libreoffice/core","events":[{"introduced":"0"},{"fixed":"6e6e54f944a5ebb49e9110bdeff844d00a96c56c"}],"database_specific":{"source":"REFERENCES"}}],"versions":["MELD_LIBREOFFICE_REPOS","libreoffice-3-5-branch-point","libreoffice-3-6-branch-point","libreoffice-3.5.0.0","libreoffice-4-0-branch-point","libreoffice-4-1-branch-point","libreoffice-4-2-branch-point","libreoffice-4-2-milestone-1","libreoffice-4-3-branch-point","libreoffice-4-4-branch-point","libreoffice-5-0-branch-point","libreoffice-5-1-branch-point","libreoffice-5-2-branch-point","libreoffice-5-3-branch-point","sdremote-2.0.0","windows_build_successful_2011_11_08"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-8358.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}