CVE 2018-6871
LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document, which use the COM.MICROSOFT.
Related bugs and status
CVE-2018-6871 (Candidate) is related to these bugs:
Bug #1746757: [SRU] libreoffice 5.4.4 for artful
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1746757 | [SRU] libreoffice 5.4.4 for artful | libreoffice (Ubuntu) | Low | Fix Released | ||
| 1746757 | [SRU] libreoffice 5.4.4 for artful | libreoffice-l10n (Ubuntu) | Low | Fix Released | ||
| 1746757 | [SRU] libreoffice 5.4.4 for artful | libreoffice (Ubuntu Artful) | High | Fix Released | ||
| 1746757 | [SRU] libreoffice 5.4.4 for artful | libreoffice-l10n (Ubuntu Artful) | High | Fix Released | ||
Bug #1748889: [CVE-2018-6871] LibreOffice allows remote attackers to read arbitrary files
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1748889 | [CVE-2018-6871] LibreOffice allows remote attackers to read arbitrary files | libreoffice (Ubuntu) | Undecided | Fix Released | ||
Bug #1748895: LO unable to find a working email configuration
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1748895 | LO unable to find a working email configuration | libreoffice (Ubuntu) | Medium | Fix Released | ||
| 1748895 | LO unable to find a working email configuration | LibreOffice | Medium | Confirmed | ||
Bug #1748999: [SRU] libreoffice 5.4.5 for artful
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1748999 | [SRU] libreoffice 5.4.5 for artful | libreoffice (Ubuntu) | High | Fix Released | ||
| 1748999 | [SRU] libreoffice 5.4.5 for artful | libreoffice-l10n (Ubuntu) | High | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
