- Detalji os-a: LUB
- Važnost: IMP
- Operativni sustavi: L
- Kategorije: LUB
==========================================================================
Ubuntu Security Notice USN-2398-1
November 05, 2014
libreoffice vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
– Ubuntu 14.10
– Ubuntu 14.04 LTS
Summary:
LibreOffice could be made to crash or run programs if it received specially
crafted network traffic.
Software Description:
– libreoffice: Office productivity suite
Details:
It was discovered that LibreOffice incorrectly handled the Impress remote
control port. An attacker could possibly use this issue to cause Impress to
crash, resulting in a denial of service, or possibly execute arbitrary
code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.10:
libreoffice-core 1:4.3.3-0ubuntu1
Ubuntu 14.04 LTS:
libreoffice-core 1:4.2.7-0ubuntu1
This update uses a new upstream release, which includes additional bug
fixes. After a standard system update you need to restart LibreOffice to
make all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-2398-1
CVE-2014-3693
Package Information:
https://launchpad.net/ubuntu/+source/libreoffice/1:4.3.3-0ubuntu1
https://launchpad.net/ubuntu/+source/libreoffice/1:4.2.7-0ubuntu1
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1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=Thrq
—–END PGP SIGNATURE—–
—
Autor | Tomislav Protega |
Cert id | NCERT-REF-2014-11-0012-ADV |
Cve | CVE-2014-3693 |
ID izvornika | USN-2398-1 |
Proizvod | libreoffice |
Izvor | http://www.ubuntu.com |