Login
Login-Name Passwort


 
Newsletter
Werbung

Sicherheit: Ausführen beliebiger Kommandos in LibreOffice
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in LibreOffice
ID: USN-3022-1
Distribution: Ubuntu
Plattformen: Ubuntu 12.04 LTS, Ubuntu 15.10, Ubuntu 16.04 LTS
Datum: Do, 30. Juni 2016, 07:33
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4324

Originalnachricht


--===============8702637407621654246==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="uAKRQypu60I7Lcqm"
Content-Disposition: inline


--uAKRQypu60I7Lcqm
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

==========================================================================
Ubuntu Security Notice USN-3022-1
June 29, 2016

libreoffice vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 LTS
- Ubuntu 15.10
- Ubuntu 12.04 LTS

Summary:

LibreOffice could be made to crash or run programs as your login if it
opened a specially crafted file.

Software Description:
- libreoffice: Office productivity suite

Details:

It was discovered that LibreOffice incorrectly handled RTF document files.
If a user were tricked into opening a specially crafted RTF document, a
remote attacker could cause LibreOffice to crash, and possibly execute
arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS:
libreoffice-core 1:5.1.4-0ubuntu1

Ubuntu 15.10:
libreoffice-core 1:5.0.6-0ubuntu1

Ubuntu 12.04 LTS:
libreoffice-core 1:3.5.7-0ubuntu11

After a standard system update you need to restart LibreOffice to make
all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-3022-1
CVE-2016-4324

Package Information:
https://launchpad.net/ubuntu/+source/libreoffice/1:5.1.4-0ubuntu1
https://launchpad.net/ubuntu/+source/libreoffice/1:5.0.6-0ubuntu1
https://launchpad.net/ubuntu/+source/libreoffice/1:3.5.7-0ubuntu11


--uAKRQypu60I7Lcqm
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=F+Kl
-----END PGP SIGNATURE-----

--uAKRQypu60I7Lcqm--


--===============8702637407621654246==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

--===============8702637407621654246==--
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung