CVE-2018-16858 log

Source
Severity High
Remote No
Type Arbitrary code execution
Description
It was found that libreoffice was vulnerable to a directory traversal attack which could be used to execute arbitrary macros bundled with a document. An attacker could craft a document, which when opened by LibreOffice, would execute a Python method from a script in any arbitrary file system location, specified relative to the LibreOffice install location.
Group Package Affected Fixed Severity Status Ticket
AVG-883 libreoffice-fresh 6.1.2-1 6.1.3-1 High Fixed
References
https://www.libreoffice.org/about-us/security/advisories/cve-2018-16858/