{"id":"UBUNTU-CVE-2017-9432","details":"Document Liberation Project libstaroffice before 2017-04-07 has an out-of-bounds write caused by a stack-based buffer overflow related to the DatabaseName::read function in lib/StarWriterStruct.cxx.","modified":"2025-07-16T08:13:35.536159Z","published":"2017-06-05T03:29:00Z","withdrawn":"2025-07-18T16:44:00Z","upstream":["CVE-2017-9432"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2017-9432"},{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1029"},{"type":"REPORT","url":"https://github.com/fosnola/libstaroffice/commit/2d6253c7a692a3d92785dd990fce7256ea05e794"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2017-9432"}],"affected":[{"package":{"name":"libstaroffice","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/libstaroffice@0.0.5-1?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.0.5-1"}]}],"versions":["0.0.4-1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"libstaroffice-0.0-0","binary_version":"0.0.5-1"},{"binary_name":"libstaroffice-0.0-0-dbgsym","binary_version":"0.0.5-1"},{"binary_name":"libstaroffice-dev","binary_version":"0.0.5-1"},{"binary_name":"libstaroffice-doc","binary_version":"0.0.5-1"},{"binary_name":"libstaroffice-tools","binary_version":"0.0.5-1"},{"binary_name":"libstaroffice-tools-dbgsym","binary_version":"0.0.5-1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2017/UBUNTU-CVE-2017-9432.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]}