You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa LibreOffice

Sigurnosni nedostaci programskog paketa LibreOffice

by - 0

==========================================================================
Ubuntu Security Notice USN-4063-1
July 17, 2019

libreoffice vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 19.04
– Ubuntu 18.04 LTS
– Ubuntu 16.04 LTS

Summary:

Several security issues were fixed in LibreOffice.

Software Description:
– libreoffice: Office productivity suite

Details:

Nils Emmerich discovered that LibreOffice incorrectly handled LibreLogo
scripts. If a user were tricked into opening a specially crafted document,
a remote attacker could cause LibreOffice to execute arbitrary code.
(CVE-2019-9848)

Matei “Mal” Badanoiu discovered that LibreOffice incorrectly handled
stealth mode. Contrary to expectations, bullet graphics could be retrieved
from remote locations when running in stealth mode. (CVE-2019-9849)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 19.04:
libreoffice-core 1:6.2.5-0ubuntu0.19.04.1

Ubuntu 18.04 LTS:
libreoffice-core 1:6.0.7-0ubuntu0.18.04.8

Ubuntu 16.04 LTS:
libreoffice-core 1:5.1.6~rc2-0ubuntu1~xenial8

After a standard system update you need to restart LibreOffice to make all
the necessary changes.

References:
https://usn.ubuntu.com/4063-1
CVE-2019-9848, CVE-2019-9849

Package Information:
https://launchpad.net/ubuntu/+source/libreoffice/1:6.2.5-0ubuntu0.19.04.1
https://launchpad.net/ubuntu/+source/libreoffice/1:6.0.7-0ubuntu0.18.04.8
https://launchpad.net/ubuntu/+source/libreoffice/1:5.1.6~rc2-0ubuntu1~xenial8

—–BEGIN PGP SIGNATURE—–
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=24xf
—–END PGP SIGNATURE—–

Top
More in Preporuke
Nadogradnja za kritičnu ranjivost u CMS-u Drupal

Izdana je nadogradnja za otklanjanje kritične ranjivosti u jezgri CMS-a Drupal. Otkrivena ranjivost potencijalnim napadačima omogućuje izvršavanje proizvoljnog programskog koda....

Close