This CPE summary could be partial or incomplete. Please contact us for a detailed listing.


Vendor Calligra First view 2012-08-20
Product Calligra Last view 2012-08-20
Version Type Application
Sofware Edition  
Target Software  
Target Hardware  

Activity : Overall


CPE Name Affected CVE
cpe:2.3:a:calligra:calligra:2.4:beta3:*:*:*:*:*:* 1
cpe:2.3:a:calligra:calligra:2.4.3:*:*:*:*:*:*:* 1
cpe:2.3:a:calligra:calligra:2.4:beta2:*:*:*:*:*:* 1
cpe:2.3:a:calligra:calligra:2.4:rc2:*:*:*:*:*:* 1
cpe:2.3:a:calligra:calligra:2.4:beta6:*:*:*:*:*:* 1
cpe:2.3:a:calligra:calligra:2.4:beta4:*:*:*:*:*:* 1
cpe:2.3:a:calligra:calligra:2.4.1:*:*:*:*:*:*:* 1
cpe:2.3:a:calligra:calligra:2.4.2:*:*:*:*:*:*:* 1
cpe:2.3:a:calligra:calligra:2.4:*:*:*:*:*:*:* 1
cpe:2.3:a:calligra:calligra:2.4:beta7:*:*:*:*:*:* 1

Related : CVE

  Date Alert Description
7.5 2012-08-20 CVE-2012-3456

Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in Calligra 2.4.3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ODF style in an ODF document. NOTE: this is the same vulnerability as CVE-2012-3455, but it was SPLIT by the CNA even though Calligra and KOffice share the same codebase.

CWE : Common Weakness Enumeration

100% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

Oval Markup Language : Definitions

OvalID Name
oval:org.mitre.oval:def:17716 USN-1525-1 -- calligra vulnerability

OpenVAS Exploits

id Description
2012-09-26 Name : Gentoo Security Advisory GLSA 201209-10 (calligra)
File : nvt/glsa_201209_10.nasl
2012-08-30 Name : FreeBSD Ports: koffice
File : nvt/freebsd_koffice0.nasl
2012-08-30 Name : Fedora Update for calligra-l10n FEDORA-2012-11566
File : nvt/gb_fedora_2012_11566_calligra-l10n_fc17.nasl
2012-08-30 Name : Fedora Update for calligra FEDORA-2012-11566
File : nvt/gb_fedora_2012_11566_calligra_fc17.nasl
2012-08-14 Name : Ubuntu Update for calligra USN-1525-1
File : nvt/gb_ubuntu_USN_1525_1.nasl

Nessus® Vulnerability Scanner

id Description
2014-06-13 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2012-533.nasl - Type: ACT_GATHER_INFO
2012-09-26 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201209-10.nasl - Type: ACT_GATHER_INFO
2012-08-27 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_aa4d3d73ef1711e1b59300269ef07d24.nasl - Type: ACT_GATHER_INFO
2012-08-22 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2012-11566.nasl - Type: ACT_GATHER_INFO
2012-08-10 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-1525-1.nasl - Type: ACT_GATHER_INFO