You are here
Home > Preporuke > Ranjivost programskog pakleta libreoffice

Ranjivost programskog pakleta libreoffice

  • Detalji os-a: LUB
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LUB

==========================================================================
Ubuntu Security Notice USN-2398-1
November 05, 2014

libreoffice vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 14.10
– Ubuntu 14.04 LTS

Summary:

LibreOffice could be made to crash or run programs if it received specially
crafted network traffic.

Software Description:
– libreoffice: Office productivity suite

Details:

It was discovered that LibreOffice incorrectly handled the Impress remote
control port. An attacker could possibly use this issue to cause Impress to
crash, resulting in a denial of service, or possibly execute arbitrary
code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.10:
libreoffice-core 1:4.3.3-0ubuntu1

Ubuntu 14.04 LTS:
libreoffice-core 1:4.2.7-0ubuntu1

This update uses a new upstream release, which includes additional bug
fixes. After a standard system update you need to restart LibreOffice to
make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2398-1
CVE-2014-3693

Package Information:
https://launchpad.net/ubuntu/+source/libreoffice/1:4.3.3-0ubuntu1
https://launchpad.net/ubuntu/+source/libreoffice/1:4.2.7-0ubuntu1

—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1
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=Thrq
—–END PGP SIGNATURE—–

AutorTomislav Protega
Cert idNCERT-REF-2014-11-0012-ADV
CveCVE-2014-3693
ID izvornikaUSN-2398-1
Proizvodlibreoffice
Izvorhttp://www.ubuntu.com
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa VLC

Otkriveni su sigurnosni nedostaci u programskom paketu VLC. Otkriveni nedostaci potencijalnim napadačima omogućuju izvođenje napada uskraćivanjem usluge i pokretanje proizvoljnog...

Close