[3.3] libreoffice: Multiple out-of-bounds overflows in lwp filter (CVE-2016-0794, CVE-2016-0795)
(CVE-2016-0794) LotusWordPro Multiple bounds overflows in lwp filter
Multiple offsets in parsing lwp documents were insufficiently checked
Documents can be constructed which cause memory corruption by overflowing various buffer bounds.
(CVE-2016-0795) LotusWordPro Bounds overflows in LwpTocSuperLayout processing
Parsing the LwpTocSuperLayout record was insufficiently checked for
Documents can be constructed which cause memory corruption by overflowing the LwpTocSuperLayout buffer..
(from redmine: issue id 5148, created on 2016-02-22, closed on 2017-06-29)
main/libreoffice: security upgrade to 220.127.116.11 (CVE-2016-0794, CVE-2016-0795). Fixes #5148