Date: prev next · Thread: first prev next last
2023 Archives by date, by thread · List index

tl;dr: upgrade to LibreOffice >= 7.4.6 or >= 7.5.1

CVE-2023-1183 Arbitrary File Write in hsqldb 1.8.0

Fixed in: LibreOffice 7.4.6/7.5.1


LibreOffice supports embedded databases in its odb file format. The
most common format is hsqldb. LibreOffice typically contains a copy of
hsqldb version 1.8.0 to load this format. Each odb file contains a
"database/script" file which hsqldb parses to setup the database.
Hsqldb supports a "SCRIPT" keyword which is normally used to record the
commands input by the database admin to output such a script. In
affected versions of LibreOffice, an attacker could craft an odb
containing a "database/script" file which itself contained a SCRIPT
command where the contents of the file could be writen to a new file
whose location was determined by the attacker.

Users are recommended to upgrade to 7.4.6 or 7.5.1 to avoid this flaw
when using the packages provided from which include
a bundled copy of hsqldb 1.8.0.


* Thanks to Gregor Kopf of Secfault Security GmbH for finding and
reporting this issue.
* Thanks to Fred Toussi for kindly providing a solution to this issue
within hsqldb.

To unsubscribe e-mail to:
Posting guidelines + more:
List archive:
Privacy Policy:


Privacy Policy | Impressum (Legal Info) | Copyright information: Unless otherwise specified, all text and images on this website are licensed under the Creative Commons Attribution-Share Alike 3.0 License. This does not include the source code of LibreOffice, which is licensed under the Mozilla Public License (MPLv2). "LibreOffice" and "The Document Foundation" are registered trademarks of their corresponding registered owners or are in actual use as trademarks in one or more countries. Their respective logos and icons are also subject to international copyright laws. Use thereof is explained in our trademark policy.