You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa libreoffice

Sigurnosni nedostaci programskog paketa libreoffice

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LSU

openSUSE Security Update: Security update for libreoffice
______________________________________________________________________________

Announcement ID: openSUSE-SU-2019:2183-1
Rating: moderate
References: #1133534 #1141861 #1141862 #1146098 #1146105
#1146107 #1149943 #1149944
Cross-References: CVE-2019-9848 CVE-2019-9849 CVE-2019-9850
CVE-2019-9851 CVE-2019-9852 CVE-2019-9854
CVE-2019-9855
Affected Products:
openSUSE Leap 15.1
______________________________________________________________________________

An update that solves 7 vulnerabilities and has one errata
is now available.

Description:

This update for libreoffice fixes the following issues:

Updated to version 6.2.7.1.

Security issues fixed:

– CVE-2019-9849: Disabled fetching remote bullet graphics in ‘stealth
mode’ (bsc#1141861).
– CVE-2019-9848: Fixed an arbitrary script execution via LibreLogo
(bsc#1141862).
– CVE-2019-9851: Fixed LibreLogo global-event script execution issue
(bsc#1146105).
– CVE-2019-9852: Fixed insufficient URL encoding flaw in allowed script
location check (bsc#1146107).
– CVE-2019-9850: Fixed insufficient URL validation that allowed LibreLogo
script execution (bsc#1146098).
– CVE-2019-9854: Fixed unsafe URL assembly flaw (bsc#1149944).
– CVE-2019-9855: Fixed path equivalence handling flaw (bsc#1149943)

Non-security issue fixed:

– SmartArt: Basic rendering of Trapezoid List (bsc#1133534).

This update was imported from the SUSE:SLE-15-SP1:Update update project.

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

– openSUSE Leap 15.1:

zypper in -t patch openSUSE-2019-2183=1

Package List:

– openSUSE Leap 15.1 (x86_64):

libreoffice-6.2.7.1-lp151.3.6.1
libreoffice-base-6.2.7.1-lp151.3.6.1
libreoffice-base-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-base-drivers-firebird-6.2.7.1-lp151.3.6.1
libreoffice-base-drivers-firebird-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-base-drivers-postgresql-6.2.7.1-lp151.3.6.1
libreoffice-base-drivers-postgresql-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-calc-6.2.7.1-lp151.3.6.1
libreoffice-calc-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-calc-extensions-6.2.7.1-lp151.3.6.1
libreoffice-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-debugsource-6.2.7.1-lp151.3.6.1
libreoffice-draw-6.2.7.1-lp151.3.6.1
libreoffice-draw-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-filters-optional-6.2.7.1-lp151.3.6.1
libreoffice-gnome-6.2.7.1-lp151.3.6.1
libreoffice-gnome-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-gtk2-6.2.7.1-lp151.3.6.1
libreoffice-gtk2-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-gtk3-6.2.7.1-lp151.3.6.1
libreoffice-gtk3-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-impress-6.2.7.1-lp151.3.6.1
libreoffice-impress-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-mailmerge-6.2.7.1-lp151.3.6.1
libreoffice-math-6.2.7.1-lp151.3.6.1
libreoffice-math-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-officebean-6.2.7.1-lp151.3.6.1
libreoffice-officebean-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-pyuno-6.2.7.1-lp151.3.6.1
libreoffice-pyuno-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-qt5-6.2.7.1-lp151.3.6.1
libreoffice-qt5-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-sdk-6.2.7.1-lp151.3.6.1
libreoffice-sdk-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-sdk-doc-6.2.7.1-lp151.3.6.1
libreoffice-writer-6.2.7.1-lp151.3.6.1
libreoffice-writer-debuginfo-6.2.7.1-lp151.3.6.1
libreoffice-writer-extensions-6.2.7.1-lp151.3.6.1
libreofficekit-6.2.7.1-lp151.3.6.1
libreofficekit-devel-6.2.7.1-lp151.3.6.1

– openSUSE Leap 15.1 (noarch):

libreoffice-branding-upstream-6.2.7.1-lp151.3.6.1
libreoffice-gdb-pretty-printers-6.2.7.1-lp151.3.6.1
libreoffice-glade-6.2.7.1-lp151.3.6.1
libreoffice-icon-themes-6.2.7.1-lp151.3.6.1
libreoffice-l10n-af-6.2.7.1-lp151.3.6.1
libreoffice-l10n-am-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ar-6.2.7.1-lp151.3.6.1
libreoffice-l10n-as-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ast-6.2.7.1-lp151.3.6.1
libreoffice-l10n-be-6.2.7.1-lp151.3.6.1
libreoffice-l10n-bg-6.2.7.1-lp151.3.6.1
libreoffice-l10n-bn-6.2.7.1-lp151.3.6.1
libreoffice-l10n-bn_IN-6.2.7.1-lp151.3.6.1
libreoffice-l10n-bo-6.2.7.1-lp151.3.6.1
libreoffice-l10n-br-6.2.7.1-lp151.3.6.1
libreoffice-l10n-brx-6.2.7.1-lp151.3.6.1
libreoffice-l10n-bs-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ca-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ca_valencia-6.2.7.1-lp151.3.6.1
libreoffice-l10n-cs-6.2.7.1-lp151.3.6.1
libreoffice-l10n-cy-6.2.7.1-lp151.3.6.1
libreoffice-l10n-da-6.2.7.1-lp151.3.6.1
libreoffice-l10n-de-6.2.7.1-lp151.3.6.1
libreoffice-l10n-dgo-6.2.7.1-lp151.3.6.1
libreoffice-l10n-dsb-6.2.7.1-lp151.3.6.1
libreoffice-l10n-dz-6.2.7.1-lp151.3.6.1
libreoffice-l10n-el-6.2.7.1-lp151.3.6.1
libreoffice-l10n-en-6.2.7.1-lp151.3.6.1
libreoffice-l10n-en_GB-6.2.7.1-lp151.3.6.1
libreoffice-l10n-en_ZA-6.2.7.1-lp151.3.6.1
libreoffice-l10n-eo-6.2.7.1-lp151.3.6.1
libreoffice-l10n-es-6.2.7.1-lp151.3.6.1
libreoffice-l10n-et-6.2.7.1-lp151.3.6.1
libreoffice-l10n-eu-6.2.7.1-lp151.3.6.1
libreoffice-l10n-fa-6.2.7.1-lp151.3.6.1
libreoffice-l10n-fi-6.2.7.1-lp151.3.6.1
libreoffice-l10n-fr-6.2.7.1-lp151.3.6.1
libreoffice-l10n-fy-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ga-6.2.7.1-lp151.3.6.1
libreoffice-l10n-gd-6.2.7.1-lp151.3.6.1
libreoffice-l10n-gl-6.2.7.1-lp151.3.6.1
libreoffice-l10n-gu-6.2.7.1-lp151.3.6.1
libreoffice-l10n-gug-6.2.7.1-lp151.3.6.1
libreoffice-l10n-he-6.2.7.1-lp151.3.6.1
libreoffice-l10n-hi-6.2.7.1-lp151.3.6.1
libreoffice-l10n-hr-6.2.7.1-lp151.3.6.1
libreoffice-l10n-hsb-6.2.7.1-lp151.3.6.1
libreoffice-l10n-hu-6.2.7.1-lp151.3.6.1
libreoffice-l10n-id-6.2.7.1-lp151.3.6.1
libreoffice-l10n-is-6.2.7.1-lp151.3.6.1
libreoffice-l10n-it-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ja-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ka-6.2.7.1-lp151.3.6.1
libreoffice-l10n-kab-6.2.7.1-lp151.3.6.1
libreoffice-l10n-kk-6.2.7.1-lp151.3.6.1
libreoffice-l10n-km-6.2.7.1-lp151.3.6.1
libreoffice-l10n-kmr_Latn-6.2.7.1-lp151.3.6.1
libreoffice-l10n-kn-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ko-6.2.7.1-lp151.3.6.1
libreoffice-l10n-kok-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ks-6.2.7.1-lp151.3.6.1
libreoffice-l10n-lb-6.2.7.1-lp151.3.6.1
libreoffice-l10n-lo-6.2.7.1-lp151.3.6.1
libreoffice-l10n-lt-6.2.7.1-lp151.3.6.1
libreoffice-l10n-lv-6.2.7.1-lp151.3.6.1
libreoffice-l10n-mai-6.2.7.1-lp151.3.6.1
libreoffice-l10n-mk-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ml-6.2.7.1-lp151.3.6.1
libreoffice-l10n-mn-6.2.7.1-lp151.3.6.1
libreoffice-l10n-mni-6.2.7.1-lp151.3.6.1
libreoffice-l10n-mr-6.2.7.1-lp151.3.6.1
libreoffice-l10n-my-6.2.7.1-lp151.3.6.1
libreoffice-l10n-nb-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ne-6.2.7.1-lp151.3.6.1
libreoffice-l10n-nl-6.2.7.1-lp151.3.6.1
libreoffice-l10n-nn-6.2.7.1-lp151.3.6.1
libreoffice-l10n-nr-6.2.7.1-lp151.3.6.1
libreoffice-l10n-nso-6.2.7.1-lp151.3.6.1
libreoffice-l10n-oc-6.2.7.1-lp151.3.6.1
libreoffice-l10n-om-6.2.7.1-lp151.3.6.1
libreoffice-l10n-or-6.2.7.1-lp151.3.6.1
libreoffice-l10n-pa-6.2.7.1-lp151.3.6.1
libreoffice-l10n-pl-6.2.7.1-lp151.3.6.1
libreoffice-l10n-pt_BR-6.2.7.1-lp151.3.6.1
libreoffice-l10n-pt_PT-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ro-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ru-6.2.7.1-lp151.3.6.1
libreoffice-l10n-rw-6.2.7.1-lp151.3.6.1
libreoffice-l10n-sa_IN-6.2.7.1-lp151.3.6.1
libreoffice-l10n-sat-6.2.7.1-lp151.3.6.1
libreoffice-l10n-sd-6.2.7.1-lp151.3.6.1
libreoffice-l10n-si-6.2.7.1-lp151.3.6.1
libreoffice-l10n-sid-6.2.7.1-lp151.3.6.1
libreoffice-l10n-sk-6.2.7.1-lp151.3.6.1
libreoffice-l10n-sl-6.2.7.1-lp151.3.6.1
libreoffice-l10n-sq-6.2.7.1-lp151.3.6.1
libreoffice-l10n-sr-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ss-6.2.7.1-lp151.3.6.1
libreoffice-l10n-st-6.2.7.1-lp151.3.6.1
libreoffice-l10n-sv-6.2.7.1-lp151.3.6.1
libreoffice-l10n-sw_TZ-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ta-6.2.7.1-lp151.3.6.1
libreoffice-l10n-te-6.2.7.1-lp151.3.6.1
libreoffice-l10n-tg-6.2.7.1-lp151.3.6.1
libreoffice-l10n-th-6.2.7.1-lp151.3.6.1
libreoffice-l10n-tn-6.2.7.1-lp151.3.6.1
libreoffice-l10n-tr-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ts-6.2.7.1-lp151.3.6.1
libreoffice-l10n-tt-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ug-6.2.7.1-lp151.3.6.1
libreoffice-l10n-uk-6.2.7.1-lp151.3.6.1
libreoffice-l10n-uz-6.2.7.1-lp151.3.6.1
libreoffice-l10n-ve-6.2.7.1-lp151.3.6.1
libreoffice-l10n-vec-6.2.7.1-lp151.3.6.1
libreoffice-l10n-vi-6.2.7.1-lp151.3.6.1
libreoffice-l10n-xh-6.2.7.1-lp151.3.6.1
libreoffice-l10n-zh_CN-6.2.7.1-lp151.3.6.1
libreoffice-l10n-zh_TW-6.2.7.1-lp151.3.6.1
libreoffice-l10n-zu-6.2.7.1-lp151.3.6.1

References:

https://www.suse.com/security/cve/CVE-2019-9848.html
https://www.suse.com/security/cve/CVE-2019-9849.html
https://www.suse.com/security/cve/CVE-2019-9850.html
https://www.suse.com/security/cve/CVE-2019-9851.html
https://www.suse.com/security/cve/CVE-2019-9852.html
https://www.suse.com/security/cve/CVE-2019-9854.html
https://www.suse.com/security/cve/CVE-2019-9855.html
https://bugzilla.suse.com/1133534
https://bugzilla.suse.com/1141861
https://bugzilla.suse.com/1141862
https://bugzilla.suse.com/1146098
https://bugzilla.suse.com/1146105
https://bugzilla.suse.com/1146107
https://bugzilla.suse.com/1149943
https://bugzilla.suse.com/1149944


To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-security-announce+help@opensuse.org

AutorToni Vugdelija
Cert idNCERT-REF-2019-09-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostaci jezgre operacijskog sustava

Otkriveni su sigurnosni nedostaci jezgre operacijskog sustava openSUSE. Otkriveni nedostaci potencijalnim napadačima omogućuju izazivanje DoS stanja, izvršavanje proizvoljnog programskog koda,...

Close