==========================================================================
Ubuntu Security Notice USN-2400-1
November 10, 2014

libreoffice vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 12.04 LTS

Summary:

LibreOffice could be made to embed sensitive information into documents.

Software Description:
– libreoffice: Office productivity suite

Details:

It was discovered that LibreOffice incorrectly handled OLE preview
generation. If a user were tricked into opening a crafted document, an
attacker could possibly exploit this to embed arbitrary data into
documents.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 LTS:
libreoffice-core 1:3.5.7-0ubuntu7

After a standard system update you need to restart LibreOffice to make all
the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2400-1
CVE-2014-3575

Package Information:
https://launchpad.net/ubuntu/+source/libreoffice/1:3.5.7-0ubuntu7

—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1
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=s2Wq
—–END PGP SIGNATURE—–
—