- Detalji os-a: WN7
- Važnost: IMP
- Operativni sustavi: L
- Kategorije: LUB
==========================================================================
Ubuntu Security Notice USN-3210-1
February 23, 2017
LibreOffice vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
– Ubuntu 16.04 LTS
– Ubuntu 14.04 LTS
– Ubuntu 12.04 LTS
Summary:
LibreOffice could be made to disclose files if it opened a specially crafted
file.
Software Description:
– libreoffice: Office productivity suite
Details:
Ben Hayak discovered that it was possible to make LibreOffice Calc and Writer
disclose arbitrary files to an attacker if a user opened a specially crafted
file with embedded links.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 16.04 LTS:
libreoffice 1:5.1.6~rc2-0ubuntu1~xenial1
libreoffice-base 1:5.1.6~rc2-0ubuntu1~xenial1
libreoffice-base-core 1:5.1.6~rc2-0ubuntu1~xenial1
libreoffice-calc 1:5.1.6~rc2-0ubuntu1~xenial1
libreoffice-common 1:5.1.6~rc2-0ubuntu1~xenial1
libreoffice-core 1:5.1.6~rc2-0ubuntu1~xenial1
libreoffice-math 1:5.1.6~rc2-0ubuntu1~xenial1
libreoffice-writer 1:5.1.6~rc2-0ubuntu1~xenial1
Ubuntu 14.04 LTS:
libreoffice 1:4.2.8-0ubuntu5
libreoffice-base 1:4.2.8-0ubuntu5
libreoffice-base-core 1:4.2.8-0ubuntu5
libreoffice-calc 1:4.2.8-0ubuntu5
libreoffice-common 1:4.2.8-0ubuntu5
libreoffice-core 1:4.2.8-0ubuntu5
libreoffice-math 1:4.2.8-0ubuntu5
libreoffice-writer 1:4.2.8-0ubuntu5
Ubuntu 12.04 LTS:
libreoffice 1:3.5.7-0ubuntu13
libreoffice-base 1:3.5.7-0ubuntu13
libreoffice-base-core 1:3.5.7-0ubuntu13
libreoffice-calc 1:3.5.7-0ubuntu13
libreoffice-common 1:3.5.7-0ubuntu13
libreoffice-core 1:3.5.7-0ubuntu13
libreoffice-math 1:3.5.7-0ubuntu13
libreoffice-writer 1:3.5.7-0ubuntu13
In general, a standard system update will make all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-3210-1
CVE-2017-3157
Package Information:
https://launchpad.net/ubuntu/+source/libreoffice/1:5.1.6~rc2-0ubuntu1~xenial1
https://launchpad.net/ubuntu/+source/libreoffice/1:4.2.8-0ubuntu5
https://launchpad.net/ubuntu/+source/libreoffice/1:3.5.7-0ubuntu13—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2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=kkH/
—–END PGP SIGNATURE—–
—
| Autor | Danijel Kozinovic |
| Cert id | NCERT-REF-2017-02-0180-ADV |
| Cve | CERT-CVE-DUMMY |
| ID izvornika | CERT-ORIGID-DUMMY |
| Proizvod | CERT-DUMMY-PRODUCT |
| Izvor | http://www.adobe.com/ |
