Search CVE reports
1 – 7 of 7 results
CVE-2023-1183
Medium priorityA flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT command where the contents of the file could be written to a new file whose location was determined by the...
1 affected packages
hsqldb1.8.0
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| hsqldb1.8.0 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
CVE-2022-41853
Medium priorityThose using java.sql.Statement or java.sql.PreparedStatement in hsqldb (HyperSQL DataBase) to process untrusted input may be vulnerable to a remote code execution attack. By default it is allowed to call any static method of any...
1 affected packages
hsqldb
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| hsqldb | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
CVE-2008-0320
Medium priorityHeap-based buffer overflow in the OLE importer in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an OLE file with a crafted DocumentSummaryInformation stream.
3 affected packages
hsqldb, openoffice.org, openoffice.org-amd64
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| hsqldb | — | — | — | — | — |
| openoffice.org | — | — | — | — | — |
| openoffice.org-amd64 | — | — | — | — | — |
CVE-2007-5747
Medium priorityInteger underflow in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Quattro Pro (QPRO) file with crafted values that trigger an excessive loop and a...
3 affected packages
hsqldb, openoffice.org, openoffice.org-amd64
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| hsqldb | — | — | — | — | — |
| openoffice.org | — | — | — | — | — |
| openoffice.org-amd64 | — | — | — | — | — |
CVE-2007-5746
Medium priorityInteger overflow in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an EMF file with a crafted EMR_STRETCHBLT record, which triggers a heap-based...
3 affected packages
hsqldb, openoffice.org, openoffice.org-amd64
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| hsqldb | — | — | — | — | — |
| openoffice.org | — | — | — | — | — |
| openoffice.org-amd64 | — | — | — | — | — |
CVE-2007-5745
Medium priorityMultiple heap-based buffer overflows in OpenOffice.org before 2.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Quattro Pro (QPRO) file with crafted (1) Attribute and (2)...
3 affected packages
hsqldb, openoffice.org, openoffice.org-amd64
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| hsqldb | — | — | — | — | — |
| openoffice.org | — | — | — | — | — |
| openoffice.org-amd64 | — | — | — | — | — |
CVE-2007-4575
Medium prioritySome fixes available 7 of 9
HSQLDB before 1.8.0.9, as used in OpenOffice.org (OOo) 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."
3 affected packages
hsqldb, openoffice.org, openoffice.org-amd64
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| hsqldb | — | — | — | — | — |
| openoffice.org | — | — | — | — | — |
| openoffice.org-amd64 | — | — | — | — | — |